admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-06 03:17:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/network-device/XAMPP phpinfo.php 信息泄漏漏洞.md

27 lines
489 B
Markdown
Raw Normal View History

update gitbook
2022-02-20 16:14:31 +08:00
# XAMPP phpinfo.php 信息泄漏漏洞
## 漏洞描述
XAMPP存在信息泄露漏洞/dashboard/phpinfo.php 访问权限控制不严格,攻击者可获取系统敏感信息。
## 漏洞影响
```
XAMPP
```
## FOFA
```
"Welcome to XAMPP"
```
## 漏洞复现
登录页面
![img](https://typora-1308934770.cos.ap-beijing.myqcloud.com/202202162238289.png)
访问页面 **/dashboard/phpinfo.php**
![img](https://typora-1308934770.cos.ap-beijing.myqcloud.com/202202162238311.png)
Reference in New Issue Copy Permalink