onefilecms.php in OneFileCMS can be illegally modified (Administrator Privilege)

[r00tSe7en]

1.Access http://127.0.0.1/OneFileCMS-master/onefilecms.php by username/password , then click 'OneFileCMS-master'.

2.Then click 'onefilecms.php'.

3.You can see that there is no permission to edit 'onefilecms.php'. And then click 'copy'.

4.Nothing to do ,and click 'copy' again.

5.And you can see ,the file is ready for editing and saving. As following picture shows.

6.After saving ,refresh the home page,found that has been modified.