admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 10:16:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

add ShuipFCMS authcode leak and RCE

Browse Source
This commit is contained in:
corp0ra1 2021-08-02 21:38:37 +08:00 committed by GitHub
parent 544904aaf7
commit 97a4653940
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
shuipFCMS/ShuipFCMS_authcode_leak_and_RCE/README.md Normal file
View File

@ -0,0 +1,9 @@
# ShuipFCMS authcode leak and RCE
Shuipfcms is a content management system based on ThinkPHP framework and developed by independent grouping. The vulnerability exists in shuipfcms, which can be exploited by an attacker to gain control of the server
**FOFA query rule**: [header="X-Powered-By: ShuipFCMS"](https://fofa.so/result?qbase64=aGVhZGVyPSJYLVBvd2VyZWQtQnk6IFNodWlwRkNNUyI%3D)
# Demo
![](ShuipFCMS_authcode_leak_and_RCE.gif)

BIN
shuipFCMS/ShuipFCMS_authcode_leak_and_RCE/ShuipFCMS_authcode_leak_and_RCE.gif Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 1.4 MiB