漏洞描述
FE 办公协作平台是实现应用开发、运行、管理、维护的信息管理平台。飞企互联 FE 业务协作平台OfficeServer.jsp存在远程命令执行漏洞,攻击者可通过该漏洞接管服务器权限。
飞企互联 FE 业务协作平台 OfficeServer.jsp存在远程命令执行漏洞
PoC代码
暂无相关漏洞推荐
- 九思OA /jsoa/OfficeServer 文件上传漏洞
- 万户ezOFFICE协同平台 /defaultroot/iWebOfficeSign/OfficeServer.jsp/../../modules/hrm/report/customize/checkSQL_httprequest.jsp SQL 注入漏洞
- e-office-v10-officeserver-upload: 泛微OA E-Office OfficeServer.php 任意文件上传漏洞
- POC wanhu-oa-officeserver-upload-file: 万户OA OfficeServer.jsp 任意文件上传漏洞
- POC wanhuoa-officeserverservlet-file-upload: Wanhu OA OfficeServerServlet - Arbitrary File Upload
- POC weaver-office-server-file-upload: OA E-Office OfficeServer.php Arbitrary File Upload
- 九思OA OfficeServer存在SQL注入漏洞
- 万户ezOFFICE /defaultroot/iWebOfficeSign/OfficeServer.jsp/../../public/iWebRevision.jsp/Signature/SignatureEditFrm.jsp SQL 注入漏洞
- 九思OA OfficeServer 文件读取漏洞
- 宏景HCM /OfficeServer.jsp 文件上传漏洞
- 金和OA OfficeServer任意文件上传漏洞
- 新三板业务综合管理系统 /weboffice/OfficeServer.jsp 任意文件上传漏洞
- 金和OA /jc6/OfficeServer 任意文件上传漏洞