Skip to content

ha1yu/fastcms

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Fastcms system has a zip package directory traversal vulnerability that allows for arbitrary file writing. And gain server privileges

Project Address

https://github.com/my-fastcms/fastcms

Project Issues

my-fastcms/fastcms#1

This interface has a zip package directory traversal vulnerability that allows for arbitrary file writing.

/fastcms/admin/template/install

com/fastcms/cms/controller/admin/TemplateController.java image

The install method of DefaultTemplateService invoked the unzip method of FileUtils.

com/fastcms/core/template/DefaultTemplateService.java image

The unzip method of FileUtils did not do any logical judgment on the decompressed zip package.

com/fastcms/common/utils/FileUtils.java image

Create a zip package;

image

Uploading a zip package;

image

Successfully logged in to ssh, successfully wrote the public key to the root/.ssh/authorized_keys file.

image

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published