Typesetter CMS任意文件上传

  • Steps to reproduce 1- As admin go to Content menu and click on Uploaded files 2- Inside the try to upload a .php file, and 3- try to upload a .php file directly, check that it is not possible. 4- Take the same .php file and place it in a .zip and upload it. 5- Extract through functionality and open the .php file Obs: A strange behavior was that, after extracting the PHP file in functionality, it is seen as HTML.

  • PoC ==> Executing Commands

![poc_01](resource/Typesetter%20CMS%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E4%B8%8A%E4%BC%A0/media/93630451-7595a580-f9c0-11ea-9166-30d2ede2535a.gif)

test

Qingy文库 all right reserved,powered by GitbookFile Modify: 2021-07-15 20:08:19

results matching ""

    No results matching ""