355.html

<!DOCTYPE html>
<html>
<head>
<meta charset="UTF-8">
<title>某加密货币交易所漏洞 文件上传RCE &#8211; FreeMe&#039;S Blog</title>
<meta name="robots" content="max-image-preview:large">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">
<meta name="keywords" content="Freeme,cyber security,网络安全,渗透测试,web安全,漏洞,bug,0day,Penetration testing">
<meta name="description" content="FreeMe,Documenting penetration tests and life.记录渗透测试与生活.">
<meta name="author" content="freeme">
<meta name="copyright" content="freeme.cc">
<meta name="robots" content="all">
<link rel="shortcut icon" href="https://freeme.cc/favicon.ico" type="image/x-icon">
<link rel="Bookmark" href="https://freeme.cc/favicon.ico">
<style id="global-styles-inline-css" type="text/css">body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--preset--color--luminous-vivid-orange: #ff6900;--wp--preset--color--luminous-vivid-amber: #fcb900;--wp--preset--color--light-green-cyan: #7bdcb5;--wp--preset--color--vivid-green-cyan: #00d084;--wp--preset--color--pale-cyan-blue: #8ed1fc;--wp--preset--color--vivid-cyan-blue: #0693e3;--wp--preset--color--vivid-purple: #9b51e0;--wp--preset--gradient--vivid-cyan-blue-to-vivid-purple: linear-gradient(135deg,rgba(6,147,227,1) 0%,rgb(155,81,224) 100%);--wp--preset--gradient--light-green-cyan-to-vivid-green-cyan: linear-gradient(135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgba(252,185,0,1) 0%,rgba(255,105,0,1) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red: linear-gradient(135deg,rgba(255,105,0,1) 0%,rgb(207,46,46) 100%);--wp--preset--gradient--very-light-gray-to-cyan-bluish-gray: linear-gradient(135deg,rgb(238,238,238) 0%,rgb(169,184,195) 100%);--wp--preset--gradient--cool-to-warm-spectrum: linear-gradient(135deg,rgb(74,234,220) 0%,rgb(151,120,209) 20%,rgb(207,42,186) 40%,rgb(238,44,130) 60%,rgb(251,105,98) 80%,rgb(254,248,76) 100%);--wp--preset--gradient--blush-light-purple: linear-gradient(135deg,rgb(255,206,236) 0%,rgb(152,150,240) 100%);--wp--preset--gradient--blush-bordeaux: linear-gradient(135deg,rgb(254,205,165) 0%,rgb(254,45,45) 50%,rgb(107,0,62) 100%);--wp--preset--gradient--luminous-dusk: linear-gradient(135deg,rgb(255,203,112) 0%,rgb(199,81,192) 50%,rgb(65,88,208) 100%);--wp--preset--gradient--pale-ocean: linear-gradient(135deg,rgb(255,245,203) 0%,rgb(182,227,212) 50%,rgb(51,167,181) 100%);--wp--preset--gradient--electric-grass: linear-gradient(135deg,rgb(202,248,128) 0%,rgb(113,206,126) 100%);--wp--preset--gradient--midnight: linear-gradient(135deg,rgb(2,3,129) 0%,rgb(40,116,252) 100%);--wp--preset--duotone--dark-grayscale: url('#wp-duotone-dark-grayscale');--wp--preset--duotone--grayscale: url('#wp-duotone-grayscale');--wp--preset--duotone--purple-yellow: url('#wp-duotone-purple-yellow');--wp--preset--duotone--blue-red: url('#wp-duotone-blue-red');--wp--preset--duotone--midnight: url('#wp-duotone-midnight');--wp--preset--duotone--magenta-yellow: url('#wp-duotone-magenta-yellow');--wp--preset--duotone--purple-green: url('#wp-duotone-purple-green');--wp--preset--duotone--blue-orange: url('#wp-duotone-blue-orange');--wp--preset--font-size--small: 13px;--wp--preset--font-size--medium: 20px;--wp--preset--font-size--large: 36px;--wp--preset--font-size--x-large: 42px;}.has-black-color{color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-color{color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-color{color: var(--wp--preset--color--white) !important;}.has-pale-pink-color{color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-color{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-color{color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-color{color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-color{color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-color{color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-color{color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-color{color: var(--wp--preset--color--vivid-purple) !important;}.has-black-background-color{background-color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-background-color{background-color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-background-color{background-color: var(--wp--preset--color--white) !important;}.has-pale-pink-background-color{background-color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-background-color{background-color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-background-color{background-color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-background-color{background-color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-background-color{background-color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-background-color{background-color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-background-color{background-color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-background-color{background-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-background-color{background-color: var(--wp--preset--color--vivid-purple) !important;}.has-black-border-color{border-color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-border-color{border-color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-border-color{border-color: var(--wp--preset--color--white) !important;}.has-pale-pink-border-color{border-color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-border-color{border-color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-border-color{border-color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-border-color{border-color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-border-color{border-color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-border-color{border-color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-border-color{border-color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-border-color{border-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-border-color{border-color: var(--wp--preset--color--vivid-purple) !important;}.has-vivid-cyan-blue-to-vivid-purple-gradient-background{background: var(--wp--preset--gradient--vivid-cyan-blue-to-vivid-purple) !important;}.has-light-green-cyan-to-vivid-green-cyan-gradient-background{background: var(--wp--preset--gradient--light-green-cyan-to-vivid-green-cyan) !important;}.has-luminous-vivid-amber-to-luminous-vivid-orange-gradient-background{background: var(--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange) !important;}.has-luminous-vivid-orange-to-vivid-red-gradient-background{background: var(--wp--preset--gradient--luminous-vivid-orange-to-vivid-red) !important;}.has-very-light-gray-to-cyan-bluish-gray-gradient-background{background: var(--wp--preset--gradient--very-light-gray-to-cyan-bluish-gray) !important;}.has-cool-to-warm-spectrum-gradient-background{background: var(--wp--preset--gradient--cool-to-warm-spectrum) !important;}.has-blush-light-purple-gradient-background{background: var(--wp--preset--gradient--blush-light-purple) !important;}.has-blush-bordeaux-gradient-background{background: var(--wp--preset--gradient--blush-bordeaux) !important;}.has-luminous-dusk-gradient-background{background: var(--wp--preset--gradient--luminous-dusk) !important;}.has-pale-ocean-gradient-background{background: var(--wp--preset--gradient--pale-ocean) !important;}.has-electric-grass-gradient-background{background: var(--wp--preset--gradient--electric-grass) !important;}.has-midnight-gradient-background{background: var(--wp--preset--gradient--midnight) !important;}.has-small-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{font-size: var(--wp--preset--font-size--medium) !important;}.has-large-font-size{font-size: var(--wp--preset--font-size--large) !important;}.has-x-large-font-size{font-size: var(--wp--preset--font-size--x-large) !important;}</style>
<link rel="stylesheet" id="ez-icomoon-css" href="https://freeme.cc/inc/plugins/easy-table-of-contents/vendor/icomoon/style.min.css?ver=2.0.26" type="text/css" media="all">
<link rel="stylesheet" id="ez-toc-css" href="https://freeme.cc/inc/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.26" type="text/css" media="all">
<style id="ez-toc-inline-css" type="text/css">div#ez-toc-container p.ez-toc-title {font-size: 120%;}div#ez-toc-container p.ez-toc-title {font-weight: 500;}div#ez-toc-container ul li {font-size: 95%;}div#ez-toc-container nav ul ul li ul li {font-size: 90%!important;}div#ez-toc-container {width: 75%;}</style>
<link rel="stylesheet" id="main-css" href="https://freeme.cc/inc/themes/freeme/assets/css/main.css?ver=18.8" type="text/css" media="all">
</head>
<body class="head-fixed">
<header id="header">
<div class="container clearfix">
<div class="site-name">
<h1>
<a id="logo" href="https://freeme.cc/">FreeMe&#039;S Blog</a>
</h1>
</div>
<script>function Navswith(){document.getElementById("header").classList.toggle("on")}</script>
<button id="nav-swith" onclick="Navswith()"><span></span></button>
<div id="nav">
<div id="site-search">
<form id="search" method="get" action="https://www.google.com/search" target="_blank">
<div class="filter_container">
<input type="hidden" name="domains" value="freeme.cc">
<input type="hidden" name="sitesearch" value="freeme.cc">
<input type="text" name="q" class="text" autocomplete="off" placeholder="Search">
</div>
<button type="submit"></button>
</form>
</div>
<ul class="nav-menu">
<li id="menu-item-21" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-21"><a href="https://freeme.cc/">Home</a></li>
<li id="menu-item-56" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-has-children menu-item-56 menu-parent">
<a href="#">Sort</a>
<ul class="sub-menu">
<li id="menu-item-57" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-57"><a href="https://freeme.cc/security">Security</a></li>
<li id="menu-item-58" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-58"><a href="https://freeme.cc/knowledge">Knowledge</a></li>
<li id="menu-item-55" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-55"><a href="https://freeme.cc/tools">Tools</a></li>
<li id="menu-item-158" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-158"><a href="https://freeme.cc/life">Life</a></li>
<li id="menu-item-381" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-381"><a target="_blank" rel="noopener" href="https://freeme.cc/cmd/">RedTeam cmd</a></li>
</ul>
</li>
<li id="menu-item-119" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-119"><a href="https://freeme.cc/archives">Archives</a></li>
<li id="menu-item-201" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-201"><a href="https://freeme.cc/about">About</a></li>
<li id="menu-item-11" class="menu-item menu-item-type-custom menu-item-object-custom menu-item-11"><a target="_blank" rel="noopener" href="https://freeme.cc/feed/">Rss</a></li>
</ul>
</div>
</div>
</header>
<div id="body">
<div class="container clearfix">
<div id="main">
<article class="post">
<h1 class="post-title"><a href="https://freeme.cc/355.html">某加密货币交易所漏洞 文件上传RCE</a></h1>
<ul class="post-meta">
<li>2022-07-10</li>
<li><a href="https://freeme.cc/security" rel="category tag">security</a></li>
</ul>
<div class="post-content">
<p>前台RCE 信息收集老生常谈了,不多赘述</p>
<p><img class="alignnone size-full wp-image-356" src="https://freeme.cc/inc/uploads/2022/07/2022070916230912.png" alt="" width="604" height="683" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916230912.png?v=1657383789 604w, https://freeme.cc/inc/uploads/2022/07/2022070916230912-265x300.png?v=1657383789 265w" sizes="(max-width: 604px) 100vw, 604px"></p>
<p>注册需要邀请码<br>
a-z 0-9 从四字符开始爆破</p>
<p><img loading="lazy" class="alignnone size-full wp-image-357" src="https://freeme.cc/inc/uploads/2022/07/2022070916253387.png" alt="" width="591" height="284" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916253387.png?v=1657383934 591w, https://freeme.cc/inc/uploads/2022/07/2022070916253387-300x144.png?v=1657383934 300w" sizes="(max-width: 591px) 100vw, 591px"></p>
<p>注册成功,在添加钱包地址二维码处上传</p>
<p><img loading="lazy" class="alignnone size-full wp-image-358" src="https://freeme.cc/inc/uploads/2022/07/2022070916280516.png" alt="" width="934" height="489" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916280516.png?v=1657384085 934w, https://freeme.cc/inc/uploads/2022/07/2022070916280516-300x157.png?v=1657384085 300w, https://freeme.cc/inc/uploads/2022/07/2022070916280516-768x402.png?v=1657384085 768w" sizes="(max-width: 934px) 100vw, 934px"></p>
<p>正常上传图片,前端输出图片路径</p>
<p><img loading="lazy" class="alignnone size-full wp-image-359" src="https://freeme.cc/inc/uploads/2022/07/2022070916291442.png" alt="" width="409" height="550" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916291442.png?v=1657384154 409w, https://freeme.cc/inc/uploads/2022/07/2022070916291442-223x300.png?v=1657384154 223w" sizes="(max-width: 409px) 100vw, 409px"></p>
<p>直接上传php文件失败,修改Content-Type值,失败</p>
<p><img loading="lazy" class="alignnone size-full wp-image-360" src="https://freeme.cc/inc/uploads/2022/07/2022070916311416.png" alt="" width="697" height="480" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916311416.png?v=1657384275 697w, https://freeme.cc/inc/uploads/2022/07/2022070916311416-300x207.png?v=1657384275 300w" sizes="(max-width: 697px) 100vw, 697px"></p>
<p>图片一句话成功上传,只判断了文件类型,没有判断后缀。</p>
<p>上传一张图片并下载,一句话合并此图片绕过渲染</p>
<p><img loading="lazy" class="alignnone size-full wp-image-361" src="https://freeme.cc/inc/uploads/2022/07/2022070916324665.png" alt="" width="840" height="480" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916324665.png?v=1657384367 840w, https://freeme.cc/inc/uploads/2022/07/2022070916324665-300x171.png?v=1657384367 300w, https://freeme.cc/inc/uploads/2022/07/2022070916324665-768x439.png?v=1657384367 768w" sizes="(max-width: 840px) 100vw, 840px"></p>
<p>尝试连接 失败 访问文件看看</p>
<p><img loading="lazy" class="alignnone size-full wp-image-363" src="https://freeme.cc/inc/uploads/2022/07/2022070916335843.png" alt="" width="635" height="189" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916335843.png?v=1657384439 635w, https://freeme.cc/inc/uploads/2022/07/2022070916335843-300x89.png?v=1657384439 300w" sizes="(max-width: 635px) 100vw, 635px"></p>
<p>？？？ 图片200 php脚本403</p>
<p>Bypass403</p>
<p><img loading="lazy" class="alignnone size-full wp-image-364" src="https://freeme.cc/inc/uploads/2022/07/2022070916375571.png" alt="" width="953" height="175" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916375571.png?v=1657384676 953w, https://freeme.cc/inc/uploads/2022/07/2022070916375571-300x55.png?v=1657384676 300w, https://freeme.cc/inc/uploads/2022/07/2022070916375571-768x141.png?v=1657384676 768w" sizes="(max-width: 953px) 100vw, 953px"></p>
<p>后面发现跟ua没有关系,文件名后加斜线可访问</p>
<p><img loading="lazy" class="alignnone size-full wp-image-365" src="https://freeme.cc/inc/uploads/2022/07/2022070916384441.png" alt="" width="700" height="130" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916384441.png?v=1657384724 700w, https://freeme.cc/inc/uploads/2022/07/2022070916384441-300x56.png?v=1657384724 300w" sizes="(max-width: 700px) 100vw, 700px"></p>
<p><img loading="lazy" class="alignnone size-full wp-image-366" src="https://freeme.cc/inc/uploads/2022/07/2022070916392560.png" alt="" width="492" height="345" srcset="https://freeme.cc/inc/uploads/2022/07/2022070916392560.png?v=1657384765 492w, https://freeme.cc/inc/uploads/2022/07/2022070916392560-300x210.png?v=1657384765 300w" sizes="(max-width: 492px) 100vw, 492px"></p>
<div class="entry-copyright">
<p>转载请注明来自FreeMe&#039;S Blog，本文地址：https://freeme.cc/355.html</p>
<p>文章仅供学习研究,请遵守您当地的法律法规.</p>
</div> </div>
<p class="tags"><a href="https://freeme.cc/tag/0day" rel="tag">0day</a> <a href="https://freeme.cc/tag/shentou" rel="tag">渗透测试</a></p> </article>
<ul class="post-near">
       <li>Previous: <a href="https://freeme.cc/322.html" rel="prev">初识木马反检测技术</a>
</li>
<li>Next: <a href="https://freeme.cc/371.html" rel="next">密码重置漏洞备忘录</a>
</li>
</ul>
</div>
<div id="secondary">
<section id="recent-posts-4" class="widget widget_recent_entries">
<h3 class="widget-title">Recent</h3>
<div class="widget-content">
<ul>
<li>
<a href="https://freeme.cc/385.html">解决Acunetix14.9破解后扫描失败的问题</a>
</li>
<li>
<a href="https://freeme.cc/371.html">密码重置漏洞备忘录</a>
</li>
<li>
<a href="https://freeme.cc/355.html" aria-current="page">某加密货币交易所漏洞 文件上传RCE</a>
</li>
<li>
<a href="https://freeme.cc/322.html">初识木马反检测技术</a>
</li>
<li>
<a href="https://freeme.cc/304.html">疑似中国史上最大规模公民信息数据泄露</a>
</li>
</ul>
</div></section><section id="tag_cloud-5" class="widget widget_tag_cloud"><h3 class="widget-title">Tag</h3>
<div class="widget-content">
<div class="tagcloud">
<a href="https://freeme.cc/tag/0day" class="tag-cloud-link tag-link-12 tag-link-position-1" style="font-size: 13.25pt;" aria-label="0day (2个项目)">0day</a>
<a href="https://freeme.cc/tag/awvs" class="tag-cloud-link tag-link-50 tag-link-position-2" style="font-size: 13.25pt;" aria-label="Awvs (2个项目)">Awvs</a>
<a href="https://freeme.cc/tag/bypassav" class="tag-cloud-link tag-link-16 tag-link-position-3" style="font-size: 13.25pt;" aria-label="bypassav (2个项目)">bypassav</a>
<a href="https://freeme.cc/tag/c" class="tag-cloud-link tag-link-15 tag-link-position-4" style="font-size: 13.25pt;" aria-label="C++ (2个项目)">C++</a>
<a href="https://freeme.cc/tag/exp" class="tag-cloud-link tag-link-13 tag-link-position-5" style="font-size: 8pt;" aria-label="EXP (1个项目)">EXP</a>
<a href="https://freeme.cc/tag/life" class="tag-cloud-link tag-link-19 tag-link-position-6" style="font-size: 13.25pt;" aria-label="Life (2个项目)">Life</a>
<a href="https://freeme.cc/tag/redteam" class="tag-cloud-link tag-link-20 tag-link-position-7" style="font-size: 13.25pt;" aria-label="RedTeam (2个项目)">RedTeam</a>
<a href="https://freeme.cc/tag/tools" class="tag-cloud-link tag-link-10 tag-link-position-8" style="font-size: 22pt;" aria-label="工具 (5个项目)">工具</a>
<a href="https://freeme.cc/tag/shentou" class="tag-cloud-link tag-link-11 tag-link-position-9" style="font-size: 16.75pt;" aria-label="渗透测试 (3个项目)">渗透测试</a>
<a href="https://freeme.cc/tag/suyuan" class="tag-cloud-link tag-link-5 tag-link-position-10" style="font-size: 8pt;" aria-label="溯源 (1个项目)">溯源</a>
<a href="https://freeme.cc/tag/shegongku" class="tag-cloud-link tag-link-51 tag-link-position-11" style="font-size: 13.25pt;" aria-label="社工库 (2个项目)">社工库</a>
<a href="https://freeme.cc/tag/diaoyu" class="tag-cloud-link tag-link-4 tag-link-position-12" style="font-size: 13.25pt;" aria-label="钓鱼 (2个项目)">钓鱼</a>
</div>
</div></section>
</div>
</div>
</div>
<footer id="footer">
<div class="container">
<p>© 2022 <a href="https://freeme.cc/">FreeMe&#039;S Blog</a> </p>
</div>
</footer>
<div id="cornertool">
<ul>
<li id="top" class="hidden">
</ul>
</div>
<script src="https://freeme.cc/inc/themes/freeme/assets/js/jquery.min.js"></script>
<script src="https://freeme.cc/inc/themes/freeme/assets/js/jquery.pjax.min.js"></script>
<script defer src="https://static.cloudflareinsights.com/beacon.min.js" data-cf-beacon='{"token": "507adbbeaaac41ea95bf748f8c4082be"}'></script>
<script>jQuery.fn.Shake=function(n,d){this.each(function(){var jSelf=$(this);jSelf.css({position:'relative'});for(var x=1;x<=n;x++){jSelf.animate({left:(-d)},50).animate({left:d},50).animate({left:0},50)}});return this};$(document).pjax('a:not(a[target="_blank"], a[no-pjax])',{container:'#body',fragment:'#body',timeout:10000}).on('submit','form[id=searchnotajax], form[id=comment-form]',function(event){$.pjax.submit(event,{container:'#main',fragment:'#main',timeout:10000})}).on('pjax:send',function(){$("#header").prepend("<div id='bar'><\/div>")}).on('pjax:complete',function(){setTimeout(function(){$("#bar").remove()},300);$('#header').removeClass("on");$('#search-input').val("");$("#search_filtered").empty().hide();$("#secondary").removeAttr("style");}).on('pjax:end',function(){al();cl();ac();$(document).trigger('post-load');$('pre code').each(function(i, block){hljs.highlightBlock(block);});window.addComment=function(a){function b(){c(),g()}function c(a){if(t&&(m=j(r.cancelReplyId),n=j(r.commentFormId),m)){m.addEventListener("touchstart",e),m.addEventListener("click",e);for(var b,c=d(a),g=0,h=c.length;g<h;g++)b=c[g],b.addEventListener("touchstart",f),b.addEventListener("click",f)}}function d(a){var b,c=r.commentReplyClass;return a&&a.childNodes||(a=q),b=q.getElementsByClassName?a.getElementsByClassName(c):a.querySelectorAll("."+c)}function e(a){var b=this,c=r.temporaryFormId,d=j(c);d&&o&&(j(r.parentIdFieldId).value="0",d.parentNode.replaceChild(o,d),b.style.display="none",a.preventDefault())}function f(b){var c,d=this,e=i(d,"belowelement"),f=i(d,"commentid"),g=i(d,"respondelement"),h=i(d,"postid");e&&f&&g&&h&&(c=a.addComment.moveForm(e,f,g,h),!1===c&&b.preventDefault())}function g(){if(s){var a={childList:!0,subTree:!0};p=new s(h),p.observe(q.body,a)}}function h(a){for(var b=a.length;b--;)if(a[b].addedNodes.length)return void c()}function i(a,b){return u?a.dataset[b]:a.getAttribute("data-"+b)}function j(a){return q.getElementById(a)}function k(b,c,d,e){var f=j(b);o=j(d);var g,h,i,k=j(r.parentIdFieldId),p=j(r.postIdFieldId);if(f&&o&&k){l(o),e&&p&&(p.value=e),k.value=c,m.style.display="",f.parentNode.insertBefore(o,f.nextSibling),m.onclick=function(){return!1};try{for(var s=0;s<n.elements.length;s++)if(g=n.elements[s],h=!1,"getComputedStyle"in a?i=a.getComputedStyle(g):q.documentElement.currentStyle&&(i=g.currentStyle),(g.offsetWidth<=0&&g.offsetHeight<=0||"hidden"===i.visibility)&&(h=!0),"hidden"!==g.type&&!g.disabled&&!h){g.focus();break}}catch(t){}return!1}}function l(a){var b=r.temporaryFormId,c=j(b);c||(c=q.createElement("div"),c.id=b,c.style.display="none",a.parentNode.insertBefore(c,a))}var m,n,o,p,q=a.document,r={commentReplyClass:"comment-reply-link",cancelReplyId:"cancel-comment-reply-link",commentFormId:"commentform",temporaryFormId:"wp-temp-form-div",parentIdFieldId:"comment_parent",postIdFieldId:"comment_post_ID"},s=a.MutationObserver||a.WebKitMutationObserver||a.MozMutationObserver,t="querySelector"in q&&"addEventListener"in a,u=!!q.documentElement.dataset;return t&&"loading"!==q.readyState?b():t&&a.addEventListener("DOMContentLoaded",b,!1),{init:c,moveForm:k}}(window);});function ac(){$body=$('html,body');var g='.comment-list',h='.comment-num',i='.comment-reply a',wi='.whisper-reply',j='#textarea',k='',l='';c();$('#comment-form').submit(function(){$.ajax({url:$(this).attr('action'),type:'post',data:$(this).serializeArray(),error:function(){alert("提交失败，请检查网络并重试或联系管理员。");return false},success:function(d){if(!$(g,d).length){alert("你输入的内容不符合规则或回复太频繁，请修改内容或稍等片刻。");return false}else{k=$(g,d).html().match(/id=\"?comment-\d+/g).join().match(/\d+/g).sort(function(a,b){return a-b}).pop();if($('.page-navigator .prev').length&&l==""){k=''}if(l){d=$('#li-comment-'+k,d).hide();if($('#'+l).find(".comment-children").length<=0){$('#'+l).append("<div class='comment-children'><ol class='comment-list'><\/ol><\/div>")}if(k)$('#'+l+" .comment-children .comment-list").prepend(d);l=''}else{d=$('#li-comment-'+k,d).hide();if(!$(g).length)$('#comments').prepend("<h3>已有 <span class='comment-num'>0<\/span> 条评论<\/h3><ol class='comment-list'><\/ol>");$(g).prepend(d)}$('#li-comment-'+k).fadeIn();var f;$(h).length?(f=parseInt($(h).text().match(/\d+/)),$(h).html($(h).html().replace(f,f+1))):0;$('#cancel-comment-reply-link').hide();$(j).val('');$(i+','+wi+', #cancel-comment-reply-link').unbind('click');c();if(k){$body.animate({scrollTop:$('#li-comment-'+k).offset().top-50},300)}else{$body.animate({scrollTop:$('#comments').offset().top-50},300)}}}});return false});function c(){$(i+','+wi).click(function(){l=$(this).parent().parent().parent().attr("id")});$('#cancel-comment-reply-link').click(function(){l=''})}}ac();</script>
<script>var isbool=true;function al(){$('.ajaxload li[class!="next"]').remove();$('.ajaxload .next a').click(function(){if(isbool){aln()}return false})}al();function aln(){var a='.ajaxload .next a',b=$(a).attr("href");$(a).addClass('loading').text("Loading");if(b){$.ajax({url:b,error:function(){alert('The request failed, please check the network and try again.');$(a).removeAttr("class").text("Learn more");return false},success:function(d){var c=$(d).find("#main .post"),e=$(d).find(a).attr("href");if(c){$('.ajaxload').before(c)};$(a).removeAttr("class");if(e){$(a).text("Learn more").attr("href",e)}else{$(a).remove();$('.ajaxload .next').text('No more articles')}if($('.protected',d).length){$('.protected *').unbind();}isbool=true;return false}})}}</script>
<script>window.onscroll=function(){var a=document.documentElement.scrollTop||document.body.scrollTop;var b=document.getElementById("top");if(a>=200){b.removeAttribute("class")}else{b.setAttribute("class","hidden")}b.onclick=function totop(){var a=document.documentElement.scrollTop||document.body.scrollTop;if(a>0){requestAnimationFrame(totop);window.scrollTo(0,a-(a/5))}else{cancelAnimationFrame(totop)}};var d=document.getElementById("header");if(a>0&&a<30){d.style.padding=(15-a/2)+"px 0"}else if(a>=30){d.style.padding=0}else{d.removeAttribute("style")};var e=document.getElementById("main");var f=document.getElementById("secondary");var g=document.documentElement.clientHeight;var h=0;if(e.offsetHeight>f.offsetHeight){if(f.offsetHeight>g-71&&a>f.offsetHeight+101-g){if(a<e.offsetHeight+101-g){f.style.marginTop=(a-f.offsetHeight-101+g)+"px"}else{f.style.marginTop=(e.offsetHeight-f.offsetHeight)+"px"}}else if(f.offsetHeight<=g-71&&a>30+h){if(a<e.offsetHeight-f.offsetHeight+h){f.style.marginTop=(a-30-h)+"px"}else{f.style.marginTop=(e.offsetHeight-f.offsetHeight-30)+"px"}}else{f.removeAttribute("style")}}}</script>
<script>var cornertool=true;function cl(){var a=document.getElementById("catalog-col"),b=document.getElementById("catalog"),c=document.getElementById("cornertool"),d;if(a&&!b){if(c){c=c.getElementsByTagName("ul")[0];d=document.createElement("li");d.setAttribute("id","catalog");d.setAttribute("onclick","Catalogswith()");d.appendChild(document.createElement("span"));c.appendChild(d)}else{cornertool=false;c=document.createElement("div");c.setAttribute("id","cornertool");c.innerHTML='<ul><li id="catalog" onclick="Catalogswith()"><span><\/span><\/li><\/ul>';document.body.appendChild(c)}document.getElementById("catalog").className=a.className}if(!a&&b){cornertool?c.getElementsByTagName("ul")[0].removeChild(b):document.body.removeChild(c)}if(a&&b){b.className=a.className}}cl();</script>
<script>var home_url="https://freeme.cc/";</script>
<script>var site_ajax_search = 0;</script>
<script type="text/javascript" src="https://freeme.cc/lib/js/comment-reply.min.js?ver=18.8" id="comment-reply-js"></script>
</body>
</html>