声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由用户承担全部法律及连带责任,文章作者不承担任何法律及连带责任。 |
情报来源:网络,由网络安全情报攻防站整理
漏洞详细POC/EXP获取:加入网络安全情报攻防站
后续情报发布“李白你好”欢迎关注
0x01 今日漏洞【红字体为有POC】
红色字体的漏洞均有POC且已公开,请各单位自查并进行加固
金山终端安全系统V9任意文件上传漏洞
金山edr代码执行漏洞
新天晴终端安全管理系统信息泄露漏洞
Eramba任意代码执行漏洞
Openfire身份认证绕过漏洞
绿mengNF下一代防火墙任意文件上传漏洞
livebos前台任意代码执行漏洞
Adobe ColdFusion 反序列化漏洞
远秋医学技能考试系统SQL注入
广联达 Linkworks GetIMDictionary SQL注入漏洞
1Panel loadfile 后台文件读取漏洞
网御 ACM上网行为管理系统 bottomframe.cgi SQL注入漏洞
Milesight VPN server.js 任意文件读取漏洞
启迪国信 MDM 设备管理系统存在权限获取漏洞 1day
通达 OA 前台反序列化漏洞 nday
大华智慧园区综合管理平台 publishing 文件上传漏洞 nday
致远 OA 默认审计用户口令漏洞 1day
启明 4A 统一安全管控平台 getMaster 信息泄露漏洞 nday
海康威视综合安防管理平台 env 信息泄漏漏洞 nday
致远 OA 协同办公系统后台远程代码执行漏洞 0day
大华智慧园区用户密码泄露漏洞 nday
大华智慧园区综合管理平台 searchJson SQL 注入漏洞 nday
金和 OA C6 GetSqlData.aspx SQL 注入漏洞 nday
用友时空 KSOA PayBill SQL 注入漏洞 nday
泛微 E-Cology ifNewsCheckOutByCurrentUser SQL 注入漏洞 nday
金和 OA C6 GetTreeDate.aspx SQL 注入漏洞 nday 有 高
用友 NC Cloud FSservice 文件上传漏洞 nday
用友时空 KSOA QueryService SQL 注入漏洞 nday
飞企互联 FE 业务协作平台 ShowImageServlet 文件读取漏洞 nday
科荣 AIO 一体化运营管理系统文件读取漏洞 1day
用友 GRP-U8Cloud fbpm-modeler SQL 注入漏洞 nday
有需求的可加入星球获取漏洞POC
无需求的也可来学习嫖资料
0x02 威胁IP整理
以下IP存在扫描、攻击行为疑似红队IP,建议封禁
182.92.205.165106.55.202.118113.96.223.69125.39.132.12547.104.188.110106.57.165.109106.58.246.138111.201.175.230111.201.175.156111.196.58.238111.192.103.16439.100.66.9239.152.12.11839.100.69.3239.100.67.447.106.193.23139.104.205.22539.100.67.4039.106.133.102117.132.196.115123.249.105.144140.143.167.3147.99.153.17239.104.205.76101.200.127.65115.159.112.166106.55.107.106119.45.116.236101.133.226.161117.176.227.58114.132.55.1091.13.9.165118.195.251.135118.195.135.88101.200.121.243106.54.168.11382.156.151.104218.69.226.20124.220.162.3639.105.11.213171.212.117.148101.43.169.60112.126.68.27106.75.251.10239.100.74.17636.139.93.15547.92.89.80121.22.5.241101.132.42.15839.108.88.11861.171.102.52124.77.171.243103.231.172.146112.46.111.84120.235.113.2647.92.199.215182.92.222.18639.104.22.16339.100.74.171180.103.125.4339.100.71.240175.178.74.238124.248.69.22347.98.172.144249.129.46.48101.199.125.25049.93.164.238202.103.251.24647.122.24.24839.100.68.7106.75.47.27103.149.90.150101.201.34.211101.201.103.164183.136.225.31120.208.103.108124.133.0.21124.133.10.150124.165.143.215124.167.8.249124.192.116.75124.205.220.178124.220.1.58124.220.160.23124.220.180.202124.220.182.36124.220.186.134124.220.210.41124.220.222.50124.220.28.253124.220.3.138124.220.32.134124.220.45.192124.221.113.201124.221.125.71124.221.133.199124.221.157.2124.221.16.218124.221.184.239124.221.219.154124.221.237.200124.221.74.201124.221.74.23124.221.76.197124.221.77.45124.221.92.145124.222.103.13124.222.109.105124.222.111.174124.222.113.132124.222.15.191124.222.16.73124.222.166.63124.222.220.126124.222.236.52124.222.88.246124.222.92.24124.222.93.216124.223.114.215124.223.199.144124.223.200.131124.223.37.32124.223.6.231124.223.67.231124.223.70.181124.223.79.199124.223.90.67124.223.91.53124.230.124.250124.230.160.199124.234.182.132124.234.192.85124.234.198.184124.234.203.63124.235.169.3124.235.240.75124.238.42.94124.239.59.203124.248.67.61124.248.69.172124.42.50.126124.64.18.48124.64.22.215124.70.159.242124.70.176.234124.70.186.4124.70.194.200124.70.199.215124.70.208.179124.71.130.71124.71.162.130124.71.202.107124.71.212.123124.71.216.163124.71.230.106124.71.94.137124.77.86.255124.77.87.217124.79.131.184124.94.123.105124.94.191.33124.94.71.184125.105.224.99125.105.227.114125.105.228.47125.105.230.44125.106.193.39125.108.139.125125.108.155.55125.108.157.117125.108.179.43125.109.11.125125.109.22.74125.109.40.252125.110.128.120125.112.174.141117.89.64.220117.91.109.67117.91.112.231117.92.244.164117.93.173.219117.95.244.159117.95.59.129117.95.59.217117.95.59.253117.95.64.81118.107.43.102118.114.191.4118.121.205.107118.123.105.68121.31.247.237121.32.12.123121.33.173.82121.36.203.14121.36.81.223121.37.11.148121.37.135.23115.207.172.39120.244.20.218120.245.122.164120.246.107.20120.26.48.181120.26.50.204120.26.72.194120.27.19.53120.27.217.74120.27.94.139120.33.4.171120.34.216.46120.35.201.132120.40.212.133120.43.249.9123.172.57.26123.173.77.181123.175.114.162123.181.235.221123.185.149.26123.186.209.93123.188.32.235124.116.166.134124.116.166.144124.127.211.154124.127.78.16124.132.142.158
0x03 今日娱乐
原文始发于微信公众号(李白你好):HV-8月11日情报速递【又有13个漏洞有POC】
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论