2024攻防演練HW必修高危漏洞集合v1.0

二、漏洞匯總數(shù)據(jù)本文檔為斗象發(fā)布的《2024HW必修高危漏洞集合_1.0》對(duì)自2024年3月漏洞數(shù)量：6個(gè)漏洞數(shù)量：3個(gè)pay_callback.html遠(yuǎn)程行行pgAdmin遠(yuǎn)程代碼執(zhí)行pgAdminv10.0_20180516<墻傳洞傳mobile_upload_save任傳傳傳傳金山V8終端安全系統(tǒng)金山V8終端安全系統(tǒng)洞洞3.1YzmCMSpay_callback.html遠(yuǎn)程代碼執(zhí)行漏洞YzmCMS存在遠(yuǎn)程代碼執(zhí)行漏洞，未經(jīng)身份驗(yàn)證的遠(yuǎn)程攻擊者可利用此漏檢測(cè)流量中是否存在以下路徑：/pay/index/pay_ca官方下載地址：VIP平臺(tái)鏈接：/detail/1787360451298988032?keyword=JTdCJTIya2V5d29yZCUyMiUzQSUyMll6bUNNUyUyMHBheV9jYWxsYmFjay5odG1sJTIwJUU4JUJGJTlDJUU3JUE4JThCJUU0JUJCJUEzJUU3JUEwJTgxJUU2JTg5JUE3JUU4JUExJThDJUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&source=vb3.2暢捷通T+App_Code.ashx遠(yuǎn)程命令執(zhí)行漏洞暢捷通T+專屬云適用于需要一體化管理的企業(yè)，財(cái)務(wù)管理、業(yè)務(wù)管理、零在暢捷通T+App_Code.ashx存在遠(yuǎn)程命令執(zhí)行漏洞，未授權(quán)攻擊/tplus/ajaxpro/Ufida.T.CodeBehind._Prior請(qǐng)使用該產(chǎn)品的用戶盡快聯(lián)系廠商更新至安全版本。下載地址如下：https://僅允許可信ip訪問(wèn)/tplus/ajaxpro/Ufida.T.CodeBehind._PriorityLevel,ApTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNyU5NSU4NSVFNiU4RCVCNyVFOSU4MCU5QVQlMkIlMjBBcHBfQ29kZS5hc2h4JTIwJUU4JUJGJTlDJUU3JUE4JThCJUU1JTkxJUJEJUU0JUJCJUE0JUU2JTg5JUE3JUU4JUExJThDJUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&sour3.3pgAdmin遠(yuǎn)程代碼執(zhí)行漏洞(CVE-2022-4223)pgAdmin包含一個(gè)HTTPAPI可以用來(lái)讓用戶選擇并驗(yàn)證額外的/misc/validate_binary_pVIP平臺(tái)鏈接/detail/1776855870139dCJTIya2V5d29yZCUyMiUzQSUyMnBnQYlRTYlQjQlOUUoQ1ZFLTIwMjItNDIyMyklMjIlN0Q=&origin=intellList&source=3.4泛微E-Office10atuh-file遠(yuǎn)程代碼執(zhí)行漏洞v10.0_20180516<E-Office10<v10./eoffice10/server/public/api/attachment/atu/eoffice10/server/public/api/attachment/path/eoffice10/server/public/api/empower/im僅允許可信ip訪問(wèn)/eoffice10/server/public/api/attaTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNiVCMyU5QiVFNSVCRSVBRUUtT2ZmaWNlMTAlMjBhdHVoLWZpbGUlMjAlRTglQkYlOUMlRTclQTglOEIlRTQlQkIlQTMlRTclQTAlODElRTYlODklQTclRTglQTElOEMlRTYlQkMlOEYlRTYlQjQlOUUlMjIlN0Q=&origin=intellList&source3.5銳捷EWEBauth遠(yuǎn)程代碼執(zhí)行漏洞監(jiān)控安防、物流倉(cāng)儲(chǔ)、制造業(yè)、中小教育、中小醫(yī)/cgi-bin/luci/api/auth僅允許可信ip訪問(wèn)/cgi-bin/TdCJTIya2V5d29yZCUyMiUzQSUyMiVFOSU5NCU5MCVFNiU4RCVCNyUyMEVXRUIlMjBhdXRoJTIwJUU4JUJGJTlDJUU3JUE4JThCJUU0JUJCJUEzJUU3JUEwJTgxJUU2JTg5JUE3JUU4JUExJThDJUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&sourc3.6網(wǎng)神SecGate3600防火墻sysToolsDetectNet.cgi遠(yuǎn)程代碼執(zhí)行漏洞網(wǎng)神SecGate3600防火墻是一款高性能的下一代防火墻，它可以提供防火網(wǎng)神SecGate3600防火墻sysToolsDe官方下載地址：https://www.TdCJTIya2V5d29yZCUyMiUzQSUyMiVFNyVCRCU5MSVFNyhdGUlMjAzNjAwJUU5JTk4JUIyJUU3JTgxJUFCJUU1JUEyJTk5JTIwc3lzVG9vbHNEZXRlY3ROZXQuY2dpJTIwJUU4JUJGJTlDJUU3JUE4JThCJUU0JUJCJUEzJUU3JUEwJTgxJUU2JTg5JUE3JUU4JUExJThDJUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&source=vb3.7泛微OAe-officewebservice任意文件上傳漏洞平臺(tái)全方位覆蓋日常辦公場(chǎng)景,可以有效提升泛微e-office/webservice/upload//webservice/upload/upload.請(qǐng)使用此產(chǎn)品的用戶盡快打補(bǔ)丁或更新到最新版本：https://www.weaver.coTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNiVCMyU5QiVFNSVCRSVBRU9BJTIwZS1vZmZpY2UlMjB3ZWJzZXJ2aWNlJTIwJUU0JUJCJUJCJUU2JTg0JThGJUU2JTk2JTg3JUU0JUJCJUI2JUU0JUI4JThBJUU0JUJDJUEwJUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&source3.8用友-U8-CRMswfupload文件上傳漏洞用友U8-CRM是一款由用友軟件開(kāi)反的各尸大系信理低了M茲Eh能，包戶需求，提高銷售效率，增強(qiáng)客戶滿意度，并/ajax/swfupload.php?DontCheckLo請(qǐng)用戶盡快升級(jí)至最新版本，下載地址如下：https://yo僅允許可信ip訪問(wèn)/ajax/swfupload.php?DontCheckLogi VIP平臺(tái)鏈接：/detail/1JTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNyU5NCVBOCVFNSU4RiU4Qi1VOC1DUk0lMjBzd2Z1cGxvYWQlMjAlRTYlOTYlODclRTQlQkIlQjYlRTQlQjglOEElRTQlQkMlQTAlRTYlQkMlOEYlRTYlQjQlOUUlMjIlN0Q=&origin=i3.9泛微E-Officemobile_upload_save任意文件上傳漏ction=mobile_upload_save存在未知函數(shù)，通過(guò)參數(shù)upload_quwan導(dǎo)致不受限寫入后門，獲取服務(wù)器權(quán)限，進(jìn)而控制整個(gè)web服務(wù)器。/E-mobile/App/Ajax/ajax.phpVIP平臺(tái)鏈接：/detail/1JTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNiVCMyU5QiVFNSVCRSVBRUUtT2ZmaWNlJTIwbW9iaWxlX3VwbG9hZF9zYXZlJTIwJUU0JUJCJUJCJUU2JTg0JThGJUU2JTk2JTg3JUU0JUJCJUI2JUU0JUI4JThBJUU0JUJDJUEwJUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&sour3.10致遠(yuǎn)互聯(lián)OAfileUpload.do文件上傳漏洞致遠(yuǎn)互聯(lián)-OA是數(shù)字化構(gòu)建企業(yè)數(shù)字化協(xié)同運(yùn)營(yíng)中臺(tái)，面向企業(yè)各種業(yè)務(wù)替換上傳文件的fileid值實(shí)現(xiàn)webshell上傳到服務(wù)器，獲取服務(wù)器權(quán)限。/seeyon/autoinstall.do/../../seeyon/fileUpload.請(qǐng)使用該產(chǎn)品的用戶盡快聯(lián)系廠商更新至安全版本。下載鏈接如下：https://僅允許可信ip訪問(wèn)/seeyon/aVIP平臺(tái)鏈接：/detail/1JTdCJTIya2V5d29yZCUyMiUzQSUyMiVFOCU4NyVCNCVFOCVCRiU5QyVFNCVCQSU5MiVFOCU4MSU5NE9BJTIwZmlsZVVwbG9hZC5kbyUyMCVFNiU5NiU4NyVFNCVCQiVCNiVFNCVCOCU4QSVFNCVCQyVBMCVFNiVCQyU4RiVFNiVCNCU5RSUyMiU3RA==&origin=intellList&source=vb3.11網(wǎng)神SecGate3600防火墻import_save任意文件上傳漏洞網(wǎng)神SecGate3600防火墻是一款高性能的下一代防火墻，它可以提供防火網(wǎng)神SecGate3600防火墻存在任意文件上傳漏洞。未授權(quán)的攻擊者可以通請(qǐng)用戶盡快更新至最新的版本，下載鏈接如下：hVIP平臺(tái)鏈接：/detail/1JTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNyVCRCU5MSVFNyVBNSU5RVNlY0dhdGUzNjAwJUU5JTk4JUIyJUU3JTgxJUFCJUU1JUEyJTk5JTIwaW1wb3J0X3NhdmUlMjAlRTQlQkIlQkIlRTYlODQlOEYlRTYlOTYlODclRTQlQkIlQjYlRTQlQjglOEElRTQlQkMlQTAlRTYlQkMlOEYlRTYlQjQlOUUlMjIlN0Q=&origin=intell3.12用友NC-ClouddoPost任意文件上傳漏洞銷、財(cái)務(wù)共享、全球司庫(kù)、智能制造、敏捷供應(yīng)鏈、人才管理、智慧協(xié)同等18/portal/pt/servlet/saveXmlToF請(qǐng)用戶盡快升級(jí)至最新版本，下載地址如下：https://yo僅允許可信ip訪問(wèn)/portal/pt/servlVIP平臺(tái)鏈接：/detail/1JTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNyU5NCVBOCVFNSU4RiU4Qk5DLUNsb3VkJTIwZG9Qb3N0JTIwJUU0JUJCJUJCJUU2JTg0JThGJUU2JTk2JTg3JUU0JUJCJUI2JUU0JUI4JThBJUU0JUJDJUEwJUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&source=vb3.13用友GRP-U8VerifyToken反序列化漏洞軟件還具備數(shù)據(jù)備份、恢復(fù)等安全措施，確用友GRP-U8R10系列版本存在反序列化漏洞，未經(jīng)身份驗(yàn)證的攻擊者可 VIP平臺(tái)鏈接：/detail/1JTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNyU5NCVBOCVFNSU4RiU4QkdSUC1VOCUyMFZlcmlmeVRva2VuJTIwJUU1JThGJThEJUU1JUJBJThGJUU1JTg4JTk3JUU1JThDJTk2JUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&sourc3.14暢捷通T+Ufida.T.DI.UIP.RRA.RRATableController反序列化漏洞暢捷通T+是一款企業(yè)管理軟件，主要面向中小企業(yè)。它提供了包括財(cái)務(wù)、UIP.ashx接口存在.net反序列化漏洞VIP平臺(tái)鏈接：/detail/1JTdCJTIya2V5d29yZCUyMiUzQSUyMiVFNyU5NSU4NSVFNiU4RCVCNyVFOSU4MCU5QVQlMkIlMjBVZmlkYS5ULkRJLlVJUC5SUkEuUlJBVGFibGVDb250cm9sbGVyJTIwJUU1JThGJThEJUU1JUJBJThGJUU1JTg4JTk3JUU1JThDJTk2JUU2JUJDJThGJUU2JUI0JTlFJTIyJTdE&origin=intellList&sourc3.15金蝶云星空ServiceGateway.GetServiceUmon反序列化/Kingdee.BOS.ServiceFacade.ServicesStub.ServiceGatewVIP平臺(tái)鏈接：/detail/1JTdCJTIya2V5d29yZCUyMiUzQSUyMiVFOSU4NyU5MSVFOCU5RCVCNiVFNCVCQSU5MSVFNiU5OCU5RiVFNyVBOSVCQSUyMFNlcnZpY2VHYXRld2F5LkdldFNlcnZpY2VVcmkuY29tbW9uJTIwJUU1JThGJThEJUU1JUJBJThGJUU1JTg4JTk3JUU1JThDJTk2JTIyJTdE&origin=intellList&sourc3.16金山V8終端安全系統(tǒng)pdf_maker.php命令執(zhí)行漏金山V8終端安全系統(tǒng)是一款集合了安全、管理、監(jiān)控、指揮、響應(yīng)和應(yīng)急金山V8終端安全系統(tǒng)pdf_maker.php存在命令執(zhí)行漏洞，由于沒(méi)有過(guò)濾僅允許可信ip訪問(wèn)/inter/pdf_maker.php路由VMwarevCenterServer