thinkphp-detect: ThinkPHP detect

日期: 2025-09-01 | 影响软件: thinkphp | POC: 已公开

漏洞描述

fofa app="ThinkPHP"

PoC代码[已公开]

id: thinkphp-detect

info:
    name: ThinkPHP detect
    author: zan8in
    severity: info
    verified: true
    description: fofa app="ThinkPHP"

rules:
    r0:
        request:
            method: GET
            path: /index.php?m=1
        expression: '"ThinkPHP</a><sup>([0-9]+.[0-9]+.[0-9]+)</sup>".bmatches(response.body)'
expression: r0()
来源: https://github.com/zan8in/afrog/blob/main/pocs/afrog-pocs/fingerprinting/thinkphp-detect.yaml

相关漏洞推荐