Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-20601 PoC — ThinkCMF 代码注入漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-20601.yaml
Associated Vulnerability
Title:ThinkCMF 代码注入漏洞 (CVE-2020-20601)
Description:ThinkCMF是一套基于ThinkPHP的CMS(内容管理系统)。 ThinkCMF X2.2.2版本存在代码注入漏洞,攻击者可利用该漏洞通过精心制作的包执行任意代码。
Description
ThinkCMF X2.2.2 and below contain a remote code execution caused by processing crafted packets, letting attackers execute arbitrary code remotely, exploit requires sending malicious packets.
File Snapshot

 id: CVE-2020-20601

info:
  name: ThinkCMF X2.2.2 - Remote Code Execution
  author: pikpikcu
  sever

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.