提交 #105187: Nettec CMS PHP version V6.72 has an SSRF vulnerability in the background info deal.php信息

标题Nettec CMS PHP version V6.72 has an SSRF vulnerability in the background info deal.php
描述Nettec CMS PHP version V6.72 has an SSRF vulnerability in the background info deal.php,Use ssrf to obtain sensitive file information on the intranet。We can replace the URL parameter with the address of the intranet, which will leak the information of the server intranet. You can read local files by replacing the URL with file://. http://otcms.com/news/7856.html
来源⚠️ https://github.com/BigTiger2020/2023-1/blob/main/ssrf/ssrf.md
用户
 fzh1613 (UID 42854)
提交2023-03-24 08時41分 (3 年前)
管理2023-03-25 19時01分 (1 day later)
状态已接受
VulDB条目224016 [OTCMS 6.72 URL Parameter /admin/info_deal.php UseCurl 权限提升]
积分18

上一步一览下一步

Might our Artificial Intelligence support you?

Check our Alexa App!