When we are already logged in to the background, we can add MIME and then upload a webshell . By this way, we can remotely execute any system command on the web server.
Affected versions of baigoCMS
version: baigoCMS-3.0-alpha-2
PoC
1. Login to the background, add a MIME type
2. Upload webshell .
It is recommended to use one sentence webshell . E.g :
Splicing website path : http://[192.168.58.128/baigocms/public/attach/2022/03/7.php
3.Connect
The text was updated successfully, but these errors were encountered:
baigoCMS Remote Command Execution
Description
When we are already logged in to the background, we can add MIME and then upload a webshell . By this way, we can remotely execute any system command on the web server.
Affected versions of baigoCMS
version: baigoCMS-3.0-alpha-2
PoC
1. Login to the background, add a MIME type
2. Upload webshell .
It is recommended to use one sentence webshell . E.g :



Splicing website path : http://[192.168.58.128/baigocms/public/attach/2022/03/7.php
3.Connect
The text was updated successfully, but these errors were encountered: