| 제목 | MuYucms has Arbitrary code execution vulnerability via file_path Parameters |
|---|
| 설명 | Constructing packets after logging in and we will read the config file,and then we can get the key value of the file, and copy the file checksum and replace it in the packet . Visit the corresponding location of the file on the website and find that the code has been successfully executed.
|
|---|
| 원천 | ⚠️ https://github.com/MuYuCMS/MuYuCMS/issues/5 |
|---|
| 사용자 | kaga_cve (UID 41588) |
|---|
| 제출 | 2023. 02. 25. AM 07:26 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 02. 26. PM 01:20 (1 day later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 221803 [MuYuCMS 2.2 /editor/index.php file_path 디렉토리 순회] |
|---|
| 포인트들 | 20 |
|---|