leiyuyu041013 issues

Repositories
Issues
Comments

Results 1 issues of


                                            leiyuyu041013

Remote Command Execution vulnerability in /wms/src/system/datarec.php

A RCE was found in system/datarec.php, the `$_POST[r_name]` is directly passed into the $mysqlstr, and is executed by exec, which causing a RCE. ![2U7JWGK7X(EZH(N$FE%H52P](https://user-images.githubusercontent.com/51911561/137783442-04ded066-a038-49d7-ba06-d4fb1629e70f.png) POC: Firstly, start a nc listener:...