Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
A file upload vulnerability exists in the storage feature of pagekit 1.0.18, which allows an attacker to upload malicious files
A file upload vulnerability exists in the storage feature of pagekit v1.0.18, which allows an attacker to upload malicious files
then select the upload point to upload the malicious php file and modify the packet via Burp Suite to change the file name
Upload the file successfully
The file can then be accessed at /storage/shell.php
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Problem
A file upload vulnerability exists in the storage feature of pagekit 1.0.18, which allows an attacker to upload malicious files
Technical Details
A file upload vulnerability exists in the storage feature of pagekit v1.0.18, which allows an attacker to upload malicious files
then select the upload point to upload the malicious php file and modify the packet via Burp Suite to change the file name
Upload the file successfully
The file can then be accessed at /storage/shell.php
The text was updated successfully, but these errors were encountered: