You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the CMS installation process, the configuration file filtering is not rigorous, you can insert malicious code in the installation process to execute arbitrary commands, and even get Webshell
in the install/install.php
author just check the database's name and its passwd,but not check the $dbprefix,so we can get Webshell.
and then
The text was updated successfully, but these errors were encountered:
In the CMS installation process, the configuration file filtering is not rigorous, you can insert malicious code in the installation process to execute arbitrary commands, and even get Webshell
in the install/install.php
author just check the database's name and its passwd,but not check the $dbprefix,so we can get Webshell.
and then
The text was updated successfully, but these errors were encountered: