Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SeaCMS (2021-08-18) is a vulnerability that can cause rce #21

Open
tr0uble-mAker opened this issue Aug 18, 2021 · 1 comment
Open

SeaCMS (2021-08-18) is a vulnerability that can cause rce #21

tr0uble-mAker opened this issue Aug 18, 2021 · 1 comment

Comments

@tr0uble-mAker
Copy link

In '/Upload/admin/admin_notify.php' lines 5 to 26
~3 `D XI)%F2 EQQ$V(PTC
When action=set
The variable $notify1 takes the value from the post array and writes it to the '/ data / admin / notify. PHP' file as PHP code
Try closing the preceding double quotation marks with double quotation marks to write PHP code
Construct payload variable $notify1 = "? > <?
0{8 HA@NLE72YD EO5I@03B
Arbitrary code can be executed

@ciweiin
Copy link
Contributor

ciweiin commented Aug 23, 2021

统一回复:后台问题不一一解决,如果有人能把后台都暴露那做站干啥。
Unified reply: the backstage problems are not solved one by one. If someone can expose the backstage, what will the station do.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants