mirror of
https://github.com/Threekiii/Awesome-POC.git
synced 2025-11-07 11:58:05 +00:00
47 lines
708 B
Markdown
47 lines
708 B
Markdown
|
# 若依管理系统 Druid未授权访问
|
||
|
|
|
||
|
|
## 漏洞描述
|
||
|
|
|
||
|
|
若依管理系统使用了Druid 默认开启了匿名访问,导致未授权获取敏感信息
|
||
|
|
|
||
|
|
## 漏洞影响
|
||
|
|
|
||
|
|
```
|
||
|
|
若依管理系统
|
||
|
|
```
|
||
|
|
|
||
|
|
## FOFA
|
||
|
|
|
||
|
|
```
|
||
|
|
app="若依-管理系统"
|
||
|
|
```
|
||
|
|
|
||
|
|
## 漏洞复现
|
||
|
|
|
||
|
|
源码中看到 pom.xml 文件中查看到引用了 阿里Druid
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
从 issues 中发现了默认存在的未授权访问
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
Url为
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
```plain
|
||
|
|
http://xxx.xxx.xxx.xxx/prod-api/druid/index.html
|
||
|
|
```
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
##
|