security_GPT_prompt
awesome-chatgpt-prompts-security(SEC-GPT) 训练ChatGPT成为一名网络安全专家。 很多问题不是一个指令就可以得到精准结果的,需要根据每个问题深入去了解,不能浅尝即止,期待大家提交prompts。 渗透测试 历史漏洞跟踪,包括文章和POC脚本地址 提问 Thinkphp有哪些漏洞,列出版本和cve编号,并给出
An issue exists in NoneCms V1.3. thinkphp/library/think/App.php allows remote malicious users to execute arbitrary PHP code via crafted use of the filter parameter, as demonstrated by the s=index/\think\Request/input&filter=phpinfo&data=1 query string.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
5none nonecms 1.3.0 |
Hackers exploit 2018 ThinkPHP flaws to install ‘Dama’ web shells By Bill Toulas June 6, 2024 05:26 PM 0 Image: Midjourney Chinese threat actors are targeting ThinkPHP applications vulnerable to CVE-2018-20062 and CVE-2019-9082 to install a persistent web shell named Dama. The web shell enables further exploitation of the breached endpoints, such as enlisting them as part of the attackers' infrastructure to evade detection in subsequent operations. The first signs of this activity date b...