Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

There is a reinstall vulnerability that can be reinstall your website. #16

Closed
zyfyc opened this issue Feb 14, 2019 · 3 comments

Comments

@zyfyc
Copy link

commented Feb 14, 2019

Although you have detected this config.php to prevent reinstall,but it still exist.
poc:
0
let's bypass by the parameter "p"
1
then we can reinstall the website.

@Vaska

This comment has been minimized.

Copy link
Collaborator

commented Feb 14, 2019

@Indexhibit Indexhibit closed this Feb 14, 2019

@zyfyc

This comment has been minimized.

Copy link
Author

commented Feb 15, 2019

That's fine.The reason why I show two pocs is that we can reinstall the website then getshell by this "Assets" function to modify php files.Thanks for your reply.

@Indexhibit

This comment has been minimized.

Copy link
Owner

commented Feb 15, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
3 participants
You can’t perform that action at this time.