CVE-2019-16131 OKLite v1.2.25 任意文件上傳漏洞

From PwnWiki
Revision as of 09:26, 1 May 2021 by Pwnwiki (talk | contribs) (Created page with "==版本== OKLite v1.2.25 ==漏洞利用== 登錄後台,點擊模塊管理 編輯一個測試文件test.php,壓縮為test.zip上傳。 然後導入模塊 點擊開始上...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

版本

OKLite v1.2.25

漏洞利用

登錄後台,點擊模塊管理

編輯一個測試文件test.php,壓縮為test.zip上傳。

然後導入模塊

點擊開始上傳,上傳shell生成在解壓主目錄下面

訪問http://127.0.0.1:8888/1.2.25/data/cache/test.php

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2019-16131_OKLite_v1.2.25_任意文件上傳漏洞&oldid=1969"