QiboCMS V7 do/job.php 任意文件下载漏洞

1.漏洞分析 /inc/job/download.php $url=trimbase64decode$url; $fileurl=strreplace$webdbwwwurl,"",$url; if eregi".php",$fileurl && isfileROOTPATH."$fileurl" die"ERR"; if!$webdbDownLoadreadfile $fileurl=strstr$url,"://"?$url:tempdir$fileurl; header"location:$fileurl"; exit; $webdbupfileType = strreplace'...