Enviar #94473: MuYucms has Arbitrary code execution vulnerability via file_path Parameters información

TítuloMuYucms has Arbitrary code execution vulnerability via file_path Parameters
DescripciónConstructing packets after logging in and we will read the config file,and then we can get the key value of the file, and copy the file checksum and replace it in the packet . Visit the corresponding location of the file on the website and find that the code has been successfully executed.
Fuente⚠️ https://github.com/MuYuCMS/MuYuCMS/issues/5
Usuario
 kaga_cve (UID 41588)
Sumisión2023-02-25 07:26 (hace 3 años)
Moderación2023-02-26 13:20 (1 day later)
EstadoAceptado
Entrada de VulDB221803 [MuYuCMS 2.2 /editor/index.php file_path recorrido de directorios]
Puntos20

AnteriorVisión De ConjuntoPróximo

Interested in the pricing of exploits?

See the underground prices here!