Submeter #94473: MuYucms has Arbitrary code execution vulnerability via file_path Parameters informação

TítuloMuYucms has Arbitrary code execution vulnerability via file_path Parameters
DescriçãoConstructing packets after logging in and we will read the config file,and then we can get the key value of the file, and copy the file checksum and replace it in the packet . Visit the corresponding location of the file on the website and find that the code has been successfully executed.
Fonte⚠️ https://github.com/MuYuCMS/MuYuCMS/issues/5
Utilizador
 kaga_cve (UID 41588)
Submissão25/02/2023 07h26 (há 3 anos)
Moderação26/02/2023 13h20 (1 day later)
EstadoAceite
Entrada VulDB221803 [MuYuCMS 2.2 /editor/index.php file_path Travessia de Diretório]
Pontos20

VoltarVisão GeralPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!