Devvortex1、先用nmap扫一下2、直接访问一下网页,发现unknown host,加入hosts解析,成功访问3、页面没有什么可以利用的信息,尝试使用一下gobuster…
![[Meachines] [Medium] Lazy Padding-Oracle+AES_CBC+路径劫持权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/03/05eccbe73b4ec9b8728e2458e60363-400x280-c.jpg "[Meachines] [Medium] Lazy Padding-Oracle+AES_CBC+路径劫持权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.10.18TCP:22,80$ ip='10.10.10.18'; itf='t…
1、使用nmap简单扫描一下目标ip,开启了80端口,访问一下试试2、发现有个登录的地方,使用sqlmap尝试一下sql注入3、存在注入点,直接使用sqlmap注入获取信息,得到了…
前言好久没写漏洞分析文章了,这里就拿一个没有完全公开的用友U8 Cloud漏洞分析来展开话题吧漏洞全称是:用友 U8cloud所有版本移动报表mobilereport接口存在SQL…
![[Meachines] [Medium] DevOops XXE-XML-RSS+cPickle反序列化+git-leak权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/03/cd0704d0ca85da630be4aa18823847-400x280-c.jpg "[Meachines] [Medium] DevOops XXE-XML-RSS+cPickle反序列化+git-leak权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.10.91TCP:22,5000$ ip='10.10.10.91'; itf=…
D-link地址:https://github.com/MartinxMax/dlinkD-link 是一个轻量级的 Linux 文件同步工具,使用 C++ 编写。目录监控与实时同…
![[Meachines] [Hard] Spooktrol uvicorn-LFI+C2-RE+D-Link-V2文件同步+ C2任务表注入权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/03/1db3c0eff4ac011aa4d96de16d291d-400x280-c.jpg "[Meachines] [Hard] Spooktrol uvicorn-LFI+C2-RE+D-Link-V2文件同步+ C2任务表注入权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.11.123TCP:22,80,2222$ ip='10.10.11.123';…
![[Meachines] [Medium] RedCross XSS+Firewall-RCE+BOF-ROP-PLT权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/03/b8eab1f415fba48795fad0dbd373b2-400x280-c.jpg "[Meachines] [Medium] RedCross XSS+Firewall-RCE+BOF-ROP-PLT权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.10.113TCP:22,80,443$ ip='10.10.10.113'; …
![[Meachines] [Insane] Response SSRF +LDAP劫持+CPRF+Nmap-ssl-cert目录穿越+SMTP劫持+D-…缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/03/9ef26e03b2852fa055b349df656fb3-400x280-c.jpg "[Meachines] [Insane] Response SSRF +LDAP劫持+CPRF+Nmap-ssl-cert目录穿越+SMTP劫持+D-…缩略图")
Information GatheringIP AddressOpening Ports10.10.11.163TCP:22,80$ ip='10.10.11.163'; itf=…
![[Meachines] [Medium] Sneaky snmp+SSH-IPV6+BOF-NOP-Sled权限提升缩略图](https://www.4awl.net/wp-content/cache/thumbnails/2025/03/bf18f0672870165b99916762b40ae7-400x280-c.jpg "[Meachines] [Medium] Sneaky snmp+SSH-IPV6+BOF-NOP-Sled权限提升缩略图")
Information GatheringIP AddressOpening Ports10.10.10.20TCP:22,80$ ip='10.10.10.20'; itf='t…