cve/2018/CVE-2018-18753.md

CVE-2018-18753

Description

Typecho V1.1 allows remote attackers to send shell commands via base64-encoded serialized data, as demonstrated by SSRF.

POC

Reference

• https://github.com/wuzhicms/wuzhicms/issues/157

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/pen4uin/awesome-vulnerability-research
• https://github.com/pen4uin/vulnerability-research
• https://github.com/pen4uin/vulnerability-research-list