Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
An issue was discovered in NoneCms V1.3. thinkphp/library/think/App.php allows remote attackers to execute arbitrary PHP code via crafted use of the filter parameter, as demonstrated by the s=index/\think\Request/input&filter=phpinfo&data=1 query string.
- http://packetstormsecurity.com/files/157218/ThinkPHP-5.0.23-Remote-Code-Execution.html
- https://github.com/nangge/noneCms/issues/21
- https://github.com/0xT11/CVE-POC
- https://github.com/20142995/nuclei-templates
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/CVEDB/PoC-List
- https://github.com/CVEDB/awesome-cve-repo
- https://github.com/Elsfa7-110/kenzer-templates
- https://github.com/NS-Sp4ce/thinkphp5.XRce
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/PuddinCat/GithubRepoSpider
- https://github.com/Yang8miao/prov_navigator
- https://github.com/adminlove520/SEC-GPT
- https://github.com/akmalovaa/crowdsec-blocklist
- https://github.com/d4n-sec/d4n-sec.github.io
- https://github.com/ddrimus/http-threat-blocklist
- https://github.com/duggytuxy/Data-Shield_IPv4_Blocklist
- https://github.com/duggytuxy/Intelligence_IPv4_Blocklist
- https://github.com/enh123/ThinkPHPKiller
- https://github.com/hwiwonl/dayone
- https://github.com/imthenachoman/How-To-Secure-A-Linux-Server
- https://github.com/nholuongut/secure-a-linux-server
- https://github.com/petitfleur/prov_navigator
- https://github.com/provnavigator/prov_navigator
- https://github.com/r0ngy40/AutoSploitX
- https://github.com/sechelper/awesome-chatgpt-prompts-cybersecurity
- https://github.com/shenhui35/RedArrow
- https://github.com/veo/vscan
- https://github.com/yilin1203/CVE-2018-20062
- https://github.com/ynsta/traefik-waf-example
- https://github.com/ziminl/serverlog230602