| عنوان | MuYucms has Arbitrary code execution vulnerability via file_path Parameters |
|---|
| الوصف | Constructing packets after logging in and we will read the config file,and then we can get the key value of the file, and copy the file checksum and replace it in the packet . Visit the corresponding location of the file on the website and find that the code has been successfully executed.
|
|---|
| المصدر | ⚠️ https://github.com/MuYuCMS/MuYuCMS/issues/5 |
|---|
| المستخدم | kaga_cve (UID 41588) |
|---|
| ارسال | 25/02/2023 07:26 AM (3 سنوات منذ) |
|---|
| الاعتدال | 26/02/2023 01:20 PM (1 day later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 221803 [MuYuCMS 2.2 /editor/index.php file_path اجتياز الدليل] |
|---|
| النقاط | 20 |
|---|