| عنوان | zzcms 2023 The file contains |
|---|
| الوصف | The include method exists in the 3/Ebak5.1/upload/ChangeTable.php file. Although it is fixed to only include files in the/3/Ebbak5.1/upload/setsave/directory, it can be used in conjunction with SQL files to write non PHP files including getshell. This method works wonders when restricting the writing of PHP file suffixes. |
|---|
| المصدر | ⚠️ https://github.com/LvZCh/zzcms2023/issues/5 |
|---|
| المستخدم | LVZC (UID 74910) |
|---|
| ارسال | 20/10/2024 11:48 AM (2 سنوات منذ) |
|---|
| الاعتدال | 23/10/2024 09:53 AM (3 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 281561 [ZZCMS 2023 ChangeTable.php savefilename تجاوز الصلاحيات] |
|---|
| النقاط | 18 |
|---|