Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-29279 PoC — 74CMS 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-29279.yaml
Associated Vulnerability
Title:74CMS 安全漏洞 (CVE-2020-29279)
Description:迅易科技 74cms是中国迅易科技公司的一套基于PHP和MySQL的在线招聘系统。 74CMS 6.0.48之前版本存在安全漏洞,该漏洞源于应用程序通用控制器BaseController.class.php远程代码执行。
Description
PHP remote file inclusion in the assign_resume_tpl method in Application/Common/Controller/BaseController.class.php in 74CMS before 6.0.48 allows remote code execution.
File Snapshot

 id: CVE-2020-29279

info:
  name: 74CMS - Remote File Inclusion
  author: DhiyaneshDK
  severity: cr

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.