Skip to content

Files

Latest commit

586acfd · Jan 26, 2022

History

History

MCms

MCMS 5.2.4 Arbitrary File Upload

Mingfei MCms is a complete open source content management system.MCms 5.2.4 version /file/upload.do has arbitrary file upload vulnerabilities. Attackers can upload malicious Trojan horses to control server permissions.

FOFA query rule: body="ms/1.0.0/ms.js" || body="铭飞MCMS"

Demo

MCMS_5_2_4_Arbitrary_File_Upload