安天追影威脅分析系統越權訪問漏洞

From PwnWiki

Revision as of 15:33, 10 July 2021 by Pwnwiki (talk | contribs) (Created page with "再次訪問首頁成功進入頁面")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Other languages:

Chinese • ‎中文（中国大陆）‎ • ‎中文（繁體）‎

漏洞描述

通過修改返回包內容，可以繞過驗證，直接登陸系統，可以查看到部分敏感信息.

POC

訪問威脅分析系統，抓包一條"/api/user/islogin"的請求，返回包的內容為：

{"role": "", "login_status": false, "result": "ok"}

把請求中的 login_status 改為 true

再次訪問首頁成功進入頁面

Retrieved from "https://pwnwiki.com/index.php?title=安天追影威脅分析系統越權訪問漏洞/zh-hant&oldid=6796"