漏洞编号:CNVD-2021-30167
影响范围:NC 6.5
fofa搜索:title=="YONYOU NC" && country=""
用友NC由于对外开放了BeanShell接口,攻击者可以在未授权的情况下直接访问该接口,并构造恶意数据执行任意代码从而获取服务器权限。
关注点:/servlet/~ic/bsh.servlet.BshServlet
-
Notifications
You must be signed in to change notification settings - Fork 0
ImLazyB0y/Yonyou-BeanShell-RCE
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
CNVD-2021-30167:用友NC BeanShell RCE
Topics
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published