B4Tm4N - PHP WEBSHELL

Features 0 File Manager 1 Sec. Info 2 Simply Database 3 Interactive terminal 4 PHP Reverse Back Connect 5 Run PHP Code 6 Custom Toolz 7 Self Script Encryptor ! Download B4Tm4N...

Code execution vulnerability in hao6cms v2.0 config_edit.asp file

hao6cms is an enterprise website management system. A code execution vulnerability exists in the hao6cms v2.0 configedit.asp file. The vulnerability is due to the parameters failed to filter the direct splicing written to the configuration file, an attacker can exploit the vulnerability to obtain...

YUNUCMS v1.0.7 \app\admin\controller\Upgrade.php has file upload vulnerability

YUNUCMS enterprise website management system YUNUCMS is a set of professional marketing enterprise building system based on PHP + MYSQL as the core development. YUNUCMS v1.0.7 \app\admin\controller\Upgrade.php has a file upload vulnerability. Allows an attacker to upload a webshell and gain serve...

Code execution vulnerability in HAIRUICMS v2.1.4 /FileManage/fsoedit.asp file

HAIRUICMS HAIRUICMS is developed by HAIRUICMS based on Microsoft ASP and general ACCESS/MSSQL database. HAIRUICMS v2.1.4 /FileManage/fsoedit.asp file has a code execution vulnerability. An attacker can exploit the vulnerability to directly edit scripts to write Trojan horses and obtain a webshell...

HAIRUICMS v2.1.4 Arbitrary File Upload Vulnerability in upprocess.asp File

HAIRUICMS HAIRUICMS is developed by HAIRUICMS based on Microsoft ASP and general ACCESS/MSSQL database. HAIRUICMS v2.1.4 upprocess.asp file has an arbitrary file upload vulnerability. An attacker can exploit the vulnerability to directly upload a script Trojan and obtain a webshell...

HAIRUICMS v2.1.4 Database Backup Vulnerability in DataM.asp File

HAIRUICMS HAIRUICMS is developed by HAIRUICMS based on Microsoft ASP and general ACCESS/MSSQL database. A database backup vulnerability exists in the HAIRUICMS v2.1.4 DataM.asp file. The vulnerability is caused by not filtering both the database path to be backed up and the backup storage path,...

File Upload Vulnerability in Monstra CMS Backend "Install New Plugin

Monstra CMS is a lightweight PHP-based content management system CMS developed by Ukrainian software developer Sergey Romanenko. The system is easy to install and use, scalable and so on. A file upload vulnerability exists in the "Install New Plugin" section of the Monstra CMS backend. The...

File Renaming Vulnerability in HAIRUICMS v2.1.4 /FileManage/fsorename.asp File

HAIRUICMS HAIRUICMS is developed by HAIRUICMS based on Microsoft ASP and general ACCESS/MSSQL database. A file renaming vulnerability exists in the HAIRUICMS v2.1.4 /FileManage/fsorename.asp file. The vulnerability is caused by not filtering the file name suffix, resulting in the image can be...

YUNUCMS v1.0.7 Code Execution Vulnerabilities in controller\Wap.php and controller\Url.php Pages

YUNUCMS enterprise website management system YUNUCMS is a set of professional marketing enterprise building system based on PHP + MYSQL as the core development. A code execution vulnerability exists in the YUNUCMS controller\Wap.php and controller\Url.php pages. An attacker can exploit the...

Arbitrary File Editing Vulnerability in isite v2.1.2

ISite enterprise building system is for people who know a little website construction and HTML technology such as enterprise website builders and developed a set of open source free program specifically for enterprise building. ISite v2.1.2 in the existence of arbitrary file editing vulnerability...

Leizi technology station building cms v1.0 there are arbitrary file editing vulnerabilities

Leizi technology station cms is a set of website source program developed independently by Chongqing Leizi technology computer company. Leizi technology station cms v1.0 there are arbitrary file editing vulnerability. The vulnerability is due to the program to edit the file name and write the...

File upload vulnerability in kjcms frontend

kjcms is an internet and mobile internet based food ordering service reservation system. A file upload vulnerability exists in the kjcms frontend. The vulnerability is caused due to the upload file type and suffix can be controlled by the user, allowing an attacker to upload a webshell and gain...

Code Execution Vulnerability in MaxCMS Version 4.0

Movie System Max Program MaxCMS is an open source program that specializes in serving the construction of movie websites. MaxCMS 4.0 version of the existence of code execution vulnerabilities, the vulnerability stems from the website configuration parameters are modified without filtering the...

File Upload Vulnerability in Amoy AspCMS v6.5

Amote AspCMS is a content management system based on the ASP language. A file upload vulnerability exists in Taote AspCMS v6.5, which allows an attacker to directly upload asp Trojan horse files to obtain a webshell...

Arbitrary File Editing Vulnerability in SDCMS Version v3.3

SDCMS is a PHP 3-in-1 website management system independently developed by Fireworks Network. SDCMS v3.3 version of the existence of arbitrary file editing vulnerability, the vulnerability stems from the file path to modify the file and the content of the file to be written into the file are not...

Code Execution Vulnerability in Netnifty CMS v7.3

Netnew CIMS is an intelligent program developed professionally for building personal and corporate websites. A code execution vulnerability exists in Netnifty CMS v7.3, which can be exploited to obtain a webshell due to insufficient filtering of the parameters of the database file to be backed up...

zzzcms v1.5.3.0129 version exists arbitrary file renaming vulnerability

zzcms is a free website builder developed in asp language. zzzcms v1.5.3.0129 version of the existence of arbitrary file renaming vulnerability. The vulnerability stems from the fact that the file name and path of the file to be renamed are not filtered, which can be exploited by an attacker to...

zzcms v1.5.3.0129 version exists arbitrary file editing vulnerability

ZZCMS is an enterprise website builder. zzzcms v1.5.3.0129 version of the existence of arbitrary file editing vulnerability. The vulnerability stems from the fact that the file name, file path and file content of the file to be modified are not filtered, leading to a vulnerability that can be...

Arbitrary File Renaming Vulnerability in KingCMS v6.1.1641_Sp2 Version

KingCMS is a set of easy to learn, simple to operate open source content management system CMS, support for PHP + sqLite3/MySQL and ASP + ACCESS/MSSQL, dedicated to the professional development of oriented programs and enterprise website construction system. KingCMS v6.1.1641Sp2 version of...

dayucms v1.527 File Upload Vulnerability

DayuCMS is a free, open source, flexible and simple CMS system. dayucms v1.527 in the file upload vulnerability , the attacker vulnerability by uploading a zip file containing a Trojan horse , the system will automatically decompress , so as to obtain the webshell...