admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-07 03:02:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add Yunxintong Cropper.aspx Arbitrary File Read

Browse Source
This commit is contained in:
xiaoheihei1107 2021-08-30 16:12:47 +08:00 committed by GitHub
parent dbbbc6f01d
commit 97419d01d7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
Yunxintong/SMS/README.md Normal file
View File

@ -0,0 +1,9 @@
# Yunxintong Cropper.aspx Arbitrary File Read
The short message operation management platform of Yunxintong Cropper.aspx has arbitrary file reading vulnerabilities. Attackers can obtain arbitrary information on the server through the vulnerabilities.
FOFA **query rule**: [title="短信运营管理平台" && body="欢迎使用短信综合信息管理系统"](https://fofa.so/result?qbase64=dGl0bGU9IuefreS%2Foei%2FkOiQpeeuoeeQhuW5s%2BWPsCIgJiYgYm9keT0i5qyi6L%2BO5L2%2F55So55%2Bt5L%2Bh57u85ZCI5L%2Bh5oGv566h55CG57O757ufIg%3D%3D)
# Demo
![Yunxintong_Cropper_aspx_Arbitrary_File_Read](Yunxintong_Cropper_aspx_Arbitrary_File_Read.gif)