Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-35598 PoC — Advanced Comment System 路径遍历漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-35598.yaml
Associated Vulnerability
Title:Advanced Comment System 路径遍历漏洞 (CVE-2020-35598)
Description:Advanced Comment System是一套高级评论系统。 ACS Advanced Comment System 1.0 存在路径遍历漏洞,该漏洞源于一个高级组件系统index.php。
Description
ACS Advanced Comment System 1.0 is affected by local file inclusion via an advanced_component_system/index.php?ACS_path=..%2f URI.
File Snapshot

 id: CVE-2020-35598

info:
  name: Advanced Comment System 1.0 - Local File Inclusion
  author: daffa

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.