# CMS-Hunter
**Repository Path**: vulnhubs/CMS-Hunter
## Basic Information
- **Project Name**: CMS-Hunter
- **Description**: CMS漏洞测试用例集合
- **Primary Language**: Python
- **License**: GPL-3.0
- **Default Branch**: master
- **Homepage**: None
- **GVP Project**: No
## Statistics
- **Stars**: 0
- **Forks**: 1
- **Created**: 2021-02-27
- **Last Updated**: 2021-02-27
## Categories & Tags
**Categories**: Uncategorized
**Tags**: None
## README
# CMS-Hunter
### 简介
Content Management System Vulnerability Hunter
> 说明:目前来看,本项目会进行长期维护,有修改的建议或者想法欢迎联系作者。
***
### CMS 漏洞列表
#### Discuz
- [Discuz_<3.4_birthprovince_前台任意文件删除](Discuz/Discuz_<3.4_birthprovince_前台任意文件删除)
#### DedeCMS
- [DedeCMS_v5.7_shops_delivery_存储型XSS](DedeCMS/DedeCMS_v5.7_shops_delivery_存储型XSS)
- [DedeCMS_v5.7_carbuyaction_存储型XSS](DedeCMS/DedeCMS_v5.7_carbuyaction_存储型XSS)
- [DedeCMS_v5.7_友情链接CSRF_GetShell](DedeCMS/DedeCMS_v5.7_友情链接CSRF_GetShell)
#### Drupal
- [Drupal远程代码执行漏洞(CVE-2017-6920)](Drupal/Drupal远程代码执行漏洞(CVE-2017-6920))
#### Struts
- [S2-048(CVE-CVE-2017-9791)](Struts/S2-048(CVE-CVE-2017-9791))
#### WordPress
- [WordPress_4.4_SSRF](WordPress/WordPress_4.4_SSRF)
- [WordPress_4.7_Info_Disclosure](WordPress/WordPress_4.7_Info_Disclosure)
- [WordPress_4.7.0-4.7.1_未授权内容注入](WordPress/WordPress_4.7.0-4.7.1_未授权内容注入)
#### PHPCMS
- [PHPCMS_v9.6.0_SQL注入](PHPCMS/PHPCMS_v9.6.0_SQL注入)
- [PHPCMS_v9.6.0_任意文件上传](PHPCMS/PHPCMS_v9.6.0_任意文件上传)
- [PHPCMS_v9.6.1_任意文件下载](PHPCMS/PHPCMS_v9.6.1_任意文件下载)
- [PHPCMS_v9.6.2_任意文件下载](PHPCMS/PHPCMS_v9.6.2_任意文件下载)
#### Joomla!
- [Joomla_3.7.0_SQL注入(CVE-2017-8917)](Joomla/Joomla_3.7.0_SQL注入(CVE-2017-8917))
- [Joomla_3.4.4-3.6.3_未授权创建特权用户(CVE-2016-8869)](Joomla/Joomla_3.4.4-3.6.3_未授权创建特权用户(CVE-2016-8869))
#### FineCMS
- [FineCMS最新版5.0.8两处getshell](https://github.com/SecWiki/CMS-Hunter/tree/master/FineCMS/FineCMS%E6%9C%80%E6%96%B0%E7%89%885.0.8%E4%B8%A4%E5%A4%84getshell)
### 项目维护
+ **ourren**(sina weibo @ourren)
+ **Anka9080**(sina weibo @Anka9080)
### 免责说明
请勿用于非法的用途,否则造成的严重后果与本项目无关。
### 参考链接
- [CxSecurity](https://cxsecurity.com)
- [Seebug](https://www.seebug.org/)
### 转载
转载请注明来自 https://github.com/SecWiki/CMS-Hunter
### 补充完善
欢迎大家补充完善 [Anka9080@foxmail.com](Anka9080@foxmail.com)
©SecWiki 2017