漏洞复现

某IP设备代码审计

说实在的。没见过如此的代码。竟然如此的拉跨 偶尔看到一个设备的漏洞挖掘。尝试也看了一下代码。如下: 参考:https://xz.aliyun.com/t/10371 漏洞一、任意文件上传...

vCenter CVE-2021-22005

https://github.com/rwincey/CVE-2021-22005/ # Adapted from https://gist.github.com/testanull/c2f6fd061c496ea90ddee151d6738d2e import requests import random import string im...

密码保护:某OA 任意用户登录

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...

蓝凌OA 前台SSRF+getshell

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx xxxxxxxxxxxxxxxxxxxxxxxxx xxxxxxxxxxxxxxxxxxxxxxxxxxxx...

密码保护:某凌OA 前台未授权getshell

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx...