| Título | HuangDou UTCMS V9 RCE |
|---|
| Descripción | The cli.php page can execute system commands without authentication. The filtering rules stipulate that commands can only start with cd, php, nohup, or composer. However, system commands can be executed using "nohup whoami". |
|---|
| Fuente | ⚠️ https://github.com/DeepMountains/zzz/blob/main/CVE5-1.md |
|---|
| Usuario | chenzijie0619 (UID 74657) |
|---|
| Sumisión | 2024-10-06 04:48 (hace 2 años) |
|---|
| Moderación | 2024-10-12 18:16 (7 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 280244 [HuangDou UTCMS V9 cli.php o escalada de privilegios] |
|---|
| Puntos | 14 |
|---|