漏洞描述
联软安界UniSDP软件定义边界系统,提供命令执行接口方便管理员维护,联软UniSDP零信任访问控制系统 jwttoken泄露,攻击者可利用此jwt进行下一步敏感操作。
联软UniSDP零信任访问控制系统 jwt token泄露
PoC代码
暂无相关漏洞推荐
- U8+渠道管理(高级版) gettoken_new SQL注入漏洞
- POC k8s-apiserver-token-auth-file: Detect kube-apiserver --token-auth-file usage
- POC nacos-token-create-user: Nacos 默认密钥创建用户
- POC seeyon-m1-usertokenservice-rce: 致远OA M1 server 反序列化命令执行漏洞
- POC unisdp-vpn-rce: UniSDP commondRetSt RCE
- POC xxl-job-default-token-bypass-rce: XXL-JOB 默认 accessToken 身份绕过漏洞
- POC file-enforce-server-tokens-prod: Enforce Apache2 ServerTokens Prod
- POC file-disable-nginx-server-tokens: Disbale Nginx Server Tokens
- POC amazon-mws-auth-token-value: Amazon MWS Authentication Token - Detect
- POC dynatrace-token: Dynatrace Token - Detect
- POC github-app-token: Github App Token
- POC github-oauth-token: Github OAuth Access Token
- POC github-personal-token: Github Personal Token