74CMS设计缺陷导致被脱裤（有服务器环境限制）

简要描述： 详细说明： 首先我们来科普一下windows的短文件名，也就是下面我们要用到的。 WooYun: ThinkSAAS某处设计缺陷可能导致被拖库利用（环境与功能条件限制） 见上面漏洞的科普介绍，这里我们直接利用吧。 74cms的数据库备份如下： //执行备份 elseif$act =='dobackup' checkpermissions$SESSION'adminpurview',"database"; if !fileexists"../data/".$backupdir."/"adminmsg"备份文件存放目录data/".$backupdir."不存在！",0; if...

JBLOG 1.5.1 SQL Table Backup

!/usr/bin/perl =about VENDOR JBLOG 1.5.1 maybe earlier versions vulnerable too http://www.lisijie.org AUTHOR discovered & written by Ams ax330d doggy gmail dot com http://www.0x416d73.name/ VULNERABILITY DESCRIPTION Both 'index.php' and 'admin.php' includes file 'common.php' which checks for user...

JBLOG 1.5.1 Remote SQL Table Backup Exploit

No description provided by source. !/usr/bin/perl =about VENDOR JBLOG 1.5.1 maybe earlier versions vulnerable too http://www.lisijie.org AUTHOR discovered & written by Ams ax330d doggy gmail dot com http://www.0x416d73.name/ VULNERABILITY DESCRIPTION Both 'index.php' and 'admin.php' includes file...

JBLOG 1.5.1 - SQL Table Backup

JBLOG 1.5.1 - SQL Table Backup !/usr/bin/perl =about VENDOR JBLOG 1.5.1 maybe earlier versions vulnerable too http://www.lisijie.org AUTHOR discovered & written by Ams ax330d doggy gmail dot com http://www.0x416d73.name/ VULNERABILITY DESCRIPTION Both 'index.php' and 'admin.php' includes file...