| 제목 | 115cmsArbitrary file upload vulnerability |
|---|
| 설명 | There is an arbitrary file upload vulnerability in the 15cmsV4.05 web application. loophole http://x.x.x.x/index.php/admin/content/index HTTP/, the allowed suffix for uploading can be set at the basic configuration of the background function website settings, and then the attachment can be uploaded at the content of the content management article. Any file can be uploaded, and the website can be controlled through webshell |
|---|
| 원천 | ⚠️ https://github.com/niukongkong/asdasd/blob/master/115cmsArbitrary%20file%20upload%20vulnerability.md |
|---|
| 사용자 | clover_01 (UID 42697) |
|---|
| 제출 | 2023. 03. 10. PM 05:13 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 03. 10. PM 05:42 (29 minutes later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 222738 [Guizhou 115cms 4.2 /admin/content/index 권한 상승] |
|---|
| 포인트들 | 19 |
|---|