| عنوان | MuYucms has Arbitrary code execution vulnerability |
|---|
| الوصف | we can construct packets after logging in and we will read the config file, and then we can Specify the remote url to download the file and save the downloaded file to the specified location. then we can access the specified file directory and find that the code was successfully executed.
|
|---|
| المصدر | ⚠️ https://github.com/MuYuCMS/MuYuCMS/issues/7 |
|---|
| المستخدم | kaga_cve (UID 41588) |
|---|
| ارسال | 25/02/2023 07:39 AM (3 سنوات منذ) |
|---|
| الاعتدال | 26/02/2023 01:20 PM (1 day later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 221805 [MuYuCMS 2.2 getFile.html url تجاوز الصلاحيات] |
|---|
| النقاط | 20 |
|---|