rt...
正方软件协同办公系统
漏洞页面:ldhyhd.do
示例:
1.http://oa.zzptc.com/ldhyhd.do?theAction=edit_bzOne&id=1
2.http://58.49.91.221/zfoa/ldhyhd.do?theAction=edit_bzOne&id=1
3.http://202.114.196.7/zfoa/ldhyhd.do?theAction=edit_bzOne&id=1
4.http://oa.zbnc.edu.cn/zfoa/ldhyhd.do?theAction=edit_bzOne&id=1
5.http://222.78.110.150:8888/oa/ldhyhd.do?theAction=edit_bzOne&id=1
注入2
1.http://58.49.91.221/zfoa/arrange.do?theAction=choosePerson&id=1
2.http://202.114.196.7/zfoa/arrange.do?theAction=choosePerson&id=1
3.http://oa.zbnc.edu.cn/zfoa/arrange.do?theAction=choosePerson&id=1
4.http://oa.zzptc.com/arrange.do?theAction=choosePerson&id=1
5.http://222.78.110.150:8888/oa/arrange.do?theAction=choosePerson&id=1
6.http://218.21.97.123/zfoa/arrange.do?theAction=choosePerson&id=1