ThinkPHP the Ubb tag vulnerability to read arbitrary contents of the-vulnerability warning-the black bar safety net

2014-06-19T00:00:00
ID MYHACK58:62201449898
Type myhack58
Reporter 佚名
Modified 2014-06-19T00:00:00

Description

Brief description:

ThinkPHP the Ubb tags, there is a code highlighting function, that satisfies:

xxx[/c ode]or[p hp]xxx[/p hp]when it comes to the middle of the xxx to read, and highlight, the xxx is the path, and the non-specific code, as in Figure 1,The input path, when the file exists, the return is highlighted after the contents of the file

Detailed description:

Common/extend.phpCore/Extend/Function/extend.php

Genesis:ThinkPHP the Ubb tags, there is a code highlighting function, that satisfies:

xxx[/c ode]or[p hp]xxx[/p hp]when it comes to the middle of the xxx to read, and highlight, the xxx is the path, and the non-specific code, as in Figure 1,The input path, when the file exists, the return is highlighted after the contents of the file

! ThinkPHP the Ubb tag vulnerability to read any of the content

! ThinkPHP the Ubb tag vulnerability to read any of the content

! ThinkPHP the Ubb tag vulnerability to read any of the content When path=

the /etc/passwd

Successfully read the corresponding content, that is, when a site use ThinkPHP development, and provide comments that support the UBB tags when posting and enter

the /etc/passwd

You can read any content