Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

There is a .php file upload Vulnerbility #8

Open
Echox1 opened this issue Aug 25, 2018 · 1 comment
Open

There is a .php file upload Vulnerbility #8

Echox1 opened this issue Aug 25, 2018 · 1 comment

Comments

@Echox1
Copy link

Echox1 commented Aug 25, 2018

There is a .php file upload Vulnerbility in index.php
default
use mime type to forbidden php file is not safe,we can first edit the png file's name
6bb694762f4d4a7ff52d4efa69d9017
then add the php code at the end
d3237d2c228484bf0c8a038c24860bd
file was uploaded successfully!

default

@fgeek
Copy link

fgeek commented Sep 10, 2018

CVE-2018-16352 has been assigned for this vulnerability.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants