Update lotuscms-rce.yaml
parent
59a7391451
commit
59f524e539
|
@ -4,7 +4,8 @@ info:
|
|||
name: LotusCMS 3.0 - Remote Code Execution
|
||||
author: pikpikcu
|
||||
severity: critical
|
||||
description: LotusCMS 3.0 is susceptible to remote code execution via the Router () function. This is done by embedding PHP code in the 'page' parameter, which will be passed to a eval call and allow remote code execution.
|
||||
description: |
|
||||
LotusCMS 3.0 is susceptible to remote code execution via the Router () function. This is done by embedding PHP code in the 'page' parameter, which will be passed to a eval call and allow remote code execution.
|
||||
reference:
|
||||
- https://github.com/Hood3dRob1n/LotusCMS-Exploit
|
||||
classification:
|
||||
|
@ -28,9 +29,9 @@ requests:
|
|||
matchers-condition: and
|
||||
matchers:
|
||||
- type: word
|
||||
part: body
|
||||
words:
|
||||
- "38ee63071a04dc5e04ed22624c38e648"
|
||||
part: body
|
||||
|
||||
- type: status
|
||||
status:
|
||||
|
|
Loading…
Reference in New Issue