Skip to content

gallopsec/Hope_Erp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

514022f0a855191ae244ff641b7ef0b.png

514022f0a855191ae244ff641b7ef0b.png

 
 

Hope_Erp.py

Hope_Erp.py

 
 

README.md

README.md

 
 

a9a67ffc24e3ce61b4e1c5145a0c877.png

a9a67ffc24e3ce61b4e1c5145a0c877.png

 
 

Repository files navigation

#企望制造ERP系统 RCE漏洞 POC

由于企望制造 ERP comboxstore.action接口权限设置不当,默认的配置可执行任意SQL语句,利用xp_cmdshell函数可远程执行命令,未经认证的攻击者可通过该漏洞获取服务器权限。

Usage:
  python3 Hope_Erp.py -h

示例 示例

About

企望制造ERP系统 RCE POC

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages