安天追影威胁分析系统越权访问漏洞

From PwnWiki

Revision as of 14:32, 25 June 2021 by Pwnwiki (talk | contribs) (Created page with "==漏洞描述==")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Other languages:

Chinese • ‎中文（中国大陆）‎ • ‎中文（繁體）‎

漏洞描述

通过修改返回包内容，可以绕过验证，直接登陆系统，可以查看到部分敏感信息.

POC

访问威胁分析系统，抓包一条"/api/user/islogin"的请求，返回包的内容为：

{"role": "", "login_status": false, "result": "ok"}

把请求中的 login_status 改为 true

再次访问首页成功进入页面

Retrieved from "https://pwnwiki.com/index.php?title=安天追影威脅分析系統越權訪問漏洞/zh-cn&oldid=5901"