├── PHPmailer ├── PHPmailer 任意文件读取漏洞.md └── PHPmailer 命令执行漏洞.md ├── README.md ├── dedecms └── DedeCms v5.7.72任意用户密码重置漏洞.md ├── phpcms ├── 1.png ├── auth.php ├── phpcms v9.6.2 sqli注入漏洞分析.md ├── phpcms9.6.0-sqli.py ├── phpcms9.6.0-upload.py ├── phpcms9.6.1-downfile.py ├── phpcms_v9.6.0_UTF8.zip ├── phpcms_v9.6.1_UTF8.zip ├── phpcms_v9.6.2_UTF8.zip ├── phpcms_v9.6.3_UTF8.zip ├── phpcmsv9.6.0 任意文件上传漏洞.md ├── phpcmsv9.6.0-sqli.md └── phpcmsv9.6.1 任意文件读取漏洞.md ├── seacms ├── 6.53 - to - 6.54.zip ├── 6.55 - to - 6.56.zip ├── seacms 多个版本的代码执行漏洞总结(search.php).md └── 海洋cms V6.55.zip ├── thinkphp ├── ThinkPHP 框架安全型分析.pdf ├── Thinkphp5.0.x rce漏洞分析.pdf └── Thinkphp5.1.x rce漏洞分析.pdf ├── typecho ├── 1.0.14.10.10.-release.tar.gz ├── teypcho2.php ├── typecho.php ├── typecho_check.py ├── typecho_getshell.py └── 新手分析typecho 反序列化漏洞.md ├── wordpress └── wordpress 4.7.5 sqli注入分析.md └── yii └── Yii框架findOne fineAll 注入分析( CVE-2018-7269).pdf /PHPmailer/PHPmailer 任意文件读取漏洞.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/PHPmailer/PHPmailer 任意文件读取漏洞.md -------------------------------------------------------------------------------- /PHPmailer/PHPmailer 命令执行漏洞.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/PHPmailer/PHPmailer 命令执行漏洞.md -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/README.md -------------------------------------------------------------------------------- /dedecms/DedeCms v5.7.72任意用户密码重置漏洞.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/dedecms/DedeCms v5.7.72任意用户密码重置漏洞.md -------------------------------------------------------------------------------- /phpcms/1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/1.png -------------------------------------------------------------------------------- /phpcms/auth.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/auth.php -------------------------------------------------------------------------------- /phpcms/phpcms v9.6.2 sqli注入漏洞分析.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcms v9.6.2 sqli注入漏洞分析.md -------------------------------------------------------------------------------- /phpcms/phpcms9.6.0-sqli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcms9.6.0-sqli.py -------------------------------------------------------------------------------- /phpcms/phpcms9.6.0-upload.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcms9.6.0-upload.py -------------------------------------------------------------------------------- /phpcms/phpcms9.6.1-downfile.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcms9.6.1-downfile.py -------------------------------------------------------------------------------- /phpcms/phpcms_v9.6.0_UTF8.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcms_v9.6.0_UTF8.zip -------------------------------------------------------------------------------- /phpcms/phpcms_v9.6.1_UTF8.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcms_v9.6.1_UTF8.zip -------------------------------------------------------------------------------- /phpcms/phpcms_v9.6.2_UTF8.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcms_v9.6.2_UTF8.zip -------------------------------------------------------------------------------- /phpcms/phpcms_v9.6.3_UTF8.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcms_v9.6.3_UTF8.zip -------------------------------------------------------------------------------- /phpcms/phpcmsv9.6.0 任意文件上传漏洞.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcmsv9.6.0 任意文件上传漏洞.md -------------------------------------------------------------------------------- /phpcms/phpcmsv9.6.0-sqli.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcmsv9.6.0-sqli.md -------------------------------------------------------------------------------- /phpcms/phpcmsv9.6.1 任意文件读取漏洞.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/phpcms/phpcmsv9.6.1 任意文件读取漏洞.md -------------------------------------------------------------------------------- /seacms/6.53 - to - 6.54.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/seacms/6.53 - to - 6.54.zip -------------------------------------------------------------------------------- /seacms/6.55 - to - 6.56.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/seacms/6.55 - to - 6.56.zip -------------------------------------------------------------------------------- /seacms/seacms 多个版本的代码执行漏洞总结(search.php).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/seacms/seacms 多个版本的代码执行漏洞总结(search.php).md -------------------------------------------------------------------------------- /seacms/海洋cms V6.55.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/seacms/海洋cms V6.55.zip -------------------------------------------------------------------------------- /thinkphp/ThinkPHP 框架安全型分析.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/thinkphp/ThinkPHP 框架安全型分析.pdf -------------------------------------------------------------------------------- /thinkphp/Thinkphp5.0.x rce漏洞分析.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/thinkphp/Thinkphp5.0.x rce漏洞分析.pdf -------------------------------------------------------------------------------- /thinkphp/Thinkphp5.1.x rce漏洞分析.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/thinkphp/Thinkphp5.1.x rce漏洞分析.pdf -------------------------------------------------------------------------------- /typecho/1.0.14.10.10.-release.tar.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/typecho/1.0.14.10.10.-release.tar.gz -------------------------------------------------------------------------------- /typecho/teypcho2.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/typecho/teypcho2.php -------------------------------------------------------------------------------- /typecho/typecho.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/typecho/typecho.php -------------------------------------------------------------------------------- /typecho/typecho_check.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/typecho/typecho_check.py -------------------------------------------------------------------------------- /typecho/typecho_getshell.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/typecho/typecho_getshell.py -------------------------------------------------------------------------------- /typecho/新手分析typecho 反序列化漏洞.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/typecho/新手分析typecho 反序列化漏洞.md -------------------------------------------------------------------------------- /wordpress/wordpress 4.7.5 sqli注入分析.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/wordpress/wordpress 4.7.5 sqli注入分析.md -------------------------------------------------------------------------------- /yii/Yii框架findOne fineAll 注入分析( CVE-2018-7269).pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jiangsir404/PHP-code-audit/HEAD/yii/Yii框架findOne fineAll 注入分析( CVE-2018-7269).pdf --------------------------------------------------------------------------------