漏洞描述
畅捷通T+的某后台功能点只校验了权限,未对用户的输入进行过滤,导致在权限绕过后存在SQL注入漏洞,利用此漏洞攻击者最终可以实现远程命令执行。
畅捷通TPLUS AccountClearControler SQL注入漏洞
PoC代码
暂无相关漏洞推荐
- chanjet-tplus-checkpassword-sqli: 用友 畅捷通T+ CheckPassword SQL注入漏洞
- POC CVE-2022-0864: UpdraftPlus < 1.22.9 - Cross-Site Scripting
- POC changjietong-tplus-keyedit-sqli: 畅捷通TPlus-keyEdit.aspx-SQL注入漏洞
- POC chanjet-tplus-checkmutex-sqli: Chanjet Tplus CheckMutex SQL Injection
- POC chanjet-tplus-rce: 畅捷通 T+ 远程命令执行
- POC CNVD-2023-48562: Chanjet TPlus GetStoreWarehouseByStore - Remote Command Execution
- POC chanjet-tplus-unauth-passreset: Chanjet Tplus - Unauthorized Password Reset
- POC chanjet-tplus-checkmutex-sqli: Chanjet Tplus CheckMutex - SQL Injection
- POC chanjet-tplus-file-read: Chanjet TPlus DownloadProxy.aspx - Arbitrary File Read
- POC chanjet-tplus-fileupload: UFIDA Chanjet TPluse Upload.aspx - Arbitrary File Upload
- POC chanjet-tplus-ufida-sqli: Chanjet TPluse Ufida.T.SM.Login.UIP - SQL injection
- 畅捷通T+ GetisInitBCRetail /tplus/ajaxpro/Ufida.T.SM.UIP.Tool.AccountClearControler,Ufida.T.SM.UIP.ashx SQL 注入漏洞
- 用友畅捷通-TPlus系统 /tplus/ajaxpro/Ufida.T.SM.UIP.UA.AddressSettingController,Ufida.T.SM.UIP.ashx 服务器端请求伪造漏洞