漏洞描述
远程代码执行漏洞是指攻击者通过某些漏洞在服务器上执行任意代码,这通常是由于应用程序对外部输入的验证不足或处理不当造成的。攻击者可以利用这个漏洞上传恶意代码或直接通过HTTP请求发送恶意代码,从而控制服务器,进行包括数据窃取、网站篡改、服务器资源滥用等在内的多种恶意行为。
FH-Admin 远程代码执行漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2020-26935: phpMyAdmin < 5.0.3 - SQL Injection
- POC CVE-2022-4223: pgAdmin < 6.17 - Unauthenticated Remote Code Execution
- POC CVE-2026-23760: SmarterTools SmarterMail - Admin Password Reset
- POC openlitespeed-default-login: OpenLiteSpeed WebAdmin - Default Login
- POC adminbro-dashboard-exposure: AdminBro Dashboard - Unauthenticated Access
- POC administrate-dashboard: Administrate Dashboard Exposure
- MineAdmin企业级后台管理系统swagger信息泄露漏洞
- POC CVE-2025-25570: Vue Vben Admin - Default Credentials
- POC wp-admin-menu-editor-fpd: Admin Menu Editor - Full Path Disclosure
- POC wp-woocommerce-admin-fpd: WordPress Plugin WooCommerce Admin (woocommerce-admin) Full Path Disclosure
- POC CVE-2023-27624: WordPress Redirect After Login <= 0.1.9 - Admin Stored XSS
- POC CVE-2025-52970: Fortinet FortiWeb - Authentication Bypass to Admin Privilege
- POC keycloak-admin-console-config: Keycloak Admin Console Configuration Disclosure