一:漏洞描述 用友移动系统管理是用友公司推出的一款移动办公解决方案,旨在帮助企业实现移动办公、提高管理效率和员工工作灵活性。它提供了一系列功能和工具,方便用户在移动设备上管理和处理企业的系统和业务。该产品存在任意文件上传,攻击者可通过此漏洞获取服务器权限。 二:漏洞影响版本 用友-移动系统管理 三:网络空间测...
## 用友移动管理平台uploadIcon任意文件上传漏洞 ## fofa ``` app="用友-移动系统管理" ``` ## poc ``` POST /maportal/appmanager/uploadIcon.do HTTP/2 Host: Pragma: no-cache Cache-Control: no-cache Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"...
2 changes: 1 addition & 1 deletion 2 用友移动管理平台uploadIcon任意文件上传漏洞.md → 用友移动管理平台任意文件上传漏洞.md @@ -1,4 +1,4 @@ ## 用友移动管理平台uploadIcon任意文件上传漏洞 ## 用友移动管理平台任意文件上传漏洞 ## fofa ``` 0 comments on commit a5c40a9 Please sign in to...
增加识别北斗主动安全云平台任意文件读取;用友-移动系统管理未授权访问、SQL注入漏洞 Browse files Loading branch information selinuxG committed Oct 11, 2023 1 parent e57c782 commit 056309e Showing 6 changed files with 44 additions and 0 deletions. Whitespace Ignore whitespace Split Unified ...
## 用友移动管理平台uploadIcon任意文件上传漏洞 ## fofa ``` app="用友-移动系统管理" ``` ## poc ``` POST /maportal/appmanager/uploadIcon.do HTTP/2 Host: Pragma: no-cache Cache-Control: no-cache Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"...
## 用友移动管理平台uploadIcon任意文件上传漏洞 ## fofa ``` app="用友-移动系统管理" ``` ## poc ``` POST /maportal/appmanager/uploadIcon.do HTTP/2 Host: Pragma: no-cache Cache-Control: no-cache Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"...
## 用友移动管理平台uploadIcon任意文件上传漏洞 ## fofa ``` app="用友-移动系统管理" ``` ## poc ``` POST /maportal/appmanager/uploadIcon.do HTTP/2 Host: Pragma: no-cache Cache-Control: no-cache Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"...
## 用友移动管理平台uploadIcon任意文件上传漏洞 ## fofa ``` app="用友-移动系统管理" ``` ## poc ``` POST /maportal/appmanager/uploadIcon.do HTTP/2 Host: Pragma: no-cache Cache-Control: no-cache Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"...
## 用友移动管理平台uploadIcon任意文件上传漏洞 ## fofa ``` app="用友-移动系统管理" ``` ## poc ``` POST /maportal/appmanager/uploadIcon.do HTTP/2 Host: Pragma: no-cache Cache-Control: no-cache Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"...
## 用友移动管理平台uploadIcon任意文件上传漏洞 ## fofa ``` app="用友-移动系统管理" ``` ## poc ``` POST /maportal/appmanager/uploadIcon.do HTTP/2 Host: Pragma: no-cache Cache-Control: no-cache Sec-Ch-Ua: "Not_A Brand";v="8", "Chromium";v="120", "Google Chrome";v="120"...