إرسال #418748: HuangDou UTCMS V9 RCEالمعلومات

عنوانHuangDou UTCMS V9 RCE
الوصفThe cli.php page can execute system commands without authentication. The filtering rules stipulate that commands can only start with cd, php, nohup, or composer. However, system commands can be executed using "nohup whoami".
المصدر⚠️ https://github.com/DeepMountains/zzz/blob/main/CVE5-1.md
المستخدم
 chenzijie0619 (UID 74657)
ارسال06/10/2024 04:48 AM (2 سنوات منذ)
الاعتدال12/10/2024 06:16 PM (7 days later)
الحالةتمت الموافقة
إدخال VulDB280244 [HuangDou UTCMS V9 cli.php o تجاوز الصلاحيات]
النقاط14

التالي نظرة عامة السابق

Do you need the next level of professionalism?

Upgrade your account now!