漏洞描述
泛微云桥(e-Bridge)是上海泛微公司在”互联网+”的背景下研发的一款用于桥接互联网开放资源与企业信息化系统的系统集成中间件。泛微云桥存在任意文件读取漏洞,攻击者成功利用该漏洞,可实现任意文件读取,获取敏感信息。
泛微云桥 e-Bridge 任意文件读取
PoC代码
暂无相关漏洞推荐
- POC CVE-2020-11853: Micro Focus Operations Bridge Manager <=2020.05 - Remote Code Execution
- POC CVE-2021-22502: Micro Focus Operations Bridge Reporter - Remote Code Execution
- POC CVE-2021-25112: WordPress WHMCS Bridge <6.4b - Cross-Site Scripting
- POC CVE-2025-4008: MeteoBridge <= 6.1 - Remote Code Execution
- POC CVE-2025-4008: MeteoBridge <= 6.1 - Remote Code Execution
- POC e-bridge-saveyzjfile-file-read: 泛微OA E-Bridge saveYZJFile 任意文件读取
- POC weaver-ebridge-addTasteJsonp-sqli: Weaver e-Bridge addTasteJsonp SQL Injection
- POC weaver-ebridge-checkmobile-sqli: Weaver E-Bridge CheckMobile SQL Injection
- POC commax-credentials-disclosure: COMMAX Smart Home Ruvie CCTV Bridge DVR - RTSP Credentials Disclosure
- POC exposed-adb: Exposed Android Debug Bridge
- 泛微云桥 e-Bridge checkMobile接口存在SQL注入漏洞
- Smartbedded MeteoBridge 存在远程命令执行漏洞(CVE-2025-4008)
- 泛微云桥 e-Bridge addTasteJsonp 接口存在SQL注入漏洞