File allows malicious webshell code to be added

[Kagantua]

Find the "Edit Template Online" plugin in the "Plugin Management" section of the backend administration, and proceed to install it.

Turn on the switch for the plugin and configure it.

Then enter the file management interface.

Open the index.php file, then add the webshell malicious code.

Open the webshell management tool, enter the URL of the webshell and the corresponding connection password to connect.

Successful connection.

[Cherry-toto]

Thank you for your advice. It's not a security issue. It's the function of this plug-in! Thank you again!