add live800 poc

2018-10-08 13:01:13 +08:00
parent 48d119058d
commit 93eaa9ec3d
3 changed files with 37 additions and 1 deletions
--- a/pocdb.py
+++ b/pocdb.py
@@ -68,6 +68,7 @@ class pocdb_pocs:
            "live800在线客服系统loginAction SQL注入漏洞":live800_loginAction_sqli_BaseVerify(url),
            "live800在线客服系统多处SQL注入GETSHELL漏洞":live800_sta_export_sqli_BaseVerify(url),
            "live800在线客服系统XML实体注入漏洞":live800_services_xxe_BaseVerify(url),
+            "live800 fileDownloadServer文件读取漏洞":live800_fileDownloadServer_fileread_BaseVerify(url),
            "Onethink 参数category SQL注入":onethink_category_sqli_BaseVerify(url),
            "ThinkPHP 代码执行漏洞":thinkphp_code_exec_BaseVerify(url),
            "汇思学习管理系统任意文件下载":wizbank_download_filedownload_BaseVerify(url),
@@ -277,7 +278,6 @@ class pocdb_pocs:
            "正方教务系统services.asmx SQL注入":zfsoft_service_stryhm_sqli_BaseVerify(url),
            "正方教务系统数据库任意操纵":zfsoft_database_control_BaseVerify(url),
            "正方教务系统default3.aspx爆破页面":zfsoft_default3_bruteforce_BaseVerify(url),
-            "V2视频会议系统某处SQL注射、XXE漏洞(可getshell)":v2Conference_sqli_xxe_BaseVerify(url),
            "1039驾校通未授权访问漏洞":jxt1039_unauth_BaseVerify(url),
            "thinksns category模块代码执行":thinksns_category_code_exec_BaseVerify(url),
            "TPshop eval-stdin.php 代码执行漏洞":tpshop_eval_stdin_code_exec_BaseVerify(url),