<?xml version="1.0" encoding="utf-8"?>
<rss version="2.0"><channel><title>Doonsec's feed</title><link>http://wechat.doonsec.com/Mzg3NTk4MDQ1NA.xml</link><description>The latest security articles about WeChat official account</description><language>zh-CN</language><lastBuildDate>Tue, 03 Dec 2024 18:19:47 GMT</lastBuildDate><generator>PyRSS2Gen-1.1.0</generator><docs>http://blogs.law.harvard.edu/tech/rss</docs><image><url>http://wechat.doonsec.com/</url><title>Doonsec</title><link>http://wechat.doonsec.com/static/front/img/doonsec_bak3.png</link></image><item><title>泛微E-Mobile-client_common-error命令执行【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484813&amp;idx=1&amp;sn=7e2432f14450d4de504f6b13876bb8f3</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-12-03T10:09:13</pubDate></item><item><title>泛微E-Mobile-client_do-rce【漏洞复现】20241202</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484811&amp;idx=1&amp;sn=c0e058c0906d579d8d6dd967b92666cb</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-12-02T15:03:13</pubDate></item><item><title>泛微E-Mobile-client/cdnfile【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484798&amp;idx=1&amp;sn=3069c1a82a4da103d988af06b388a1ee</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-12-01T08:00:56</pubDate></item><item><title>天清汉马vpn任意文件读取【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484786&amp;idx=1&amp;sn=799ffb07449f2d2ce73067e9c4f38a50</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-11-30T14:24:58</pubDate></item><item><title>Geoserver远程代码执行漏洞（CVE-2024-36401）【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484776&amp;idx=1&amp;sn=63c035bb040142296e21fe7ee9525e54</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-11-01T08:00:35</pubDate></item><item><title>大华智能物联综合管理平台-log4j远程代码执行漏洞【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484775&amp;idx=1&amp;sn=424e74243234c2243267a5c7b4eb1768</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-10-31T08:01:01</pubDate></item><item><title>大华ICC智能物联综合管理平台random远程fastjson代码执行【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484772&amp;idx=1&amp;sn=cc6d1615461418f7356500f62c444534</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-10-30T08:00:24</pubDate></item><item><title>GeoServer /geoserver/wms接口存在远程命令执行漏洞【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484747&amp;idx=1&amp;sn=fb6369fa22e3773d989c3aea8931f5d9</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-10-29T08:00:19</pubDate></item><item><title>用友NC Cloud importhttpscer接口存在任意文件上传漏洞【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484723&amp;idx=1&amp;sn=9f147a587deb2235c2252aa8414b9f72</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-10-28T12:38:28</pubDate></item><item><title>泛微E-Mobile client/cdnfile 任意文件读取漏洞【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484706&amp;idx=1&amp;sn=9dd2681a298415b991066ce04dba18f6</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-09-29T20:57:20</pubDate></item><item><title>用友U8-CRM-exportdictionarySQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484667&amp;idx=1&amp;sn=547157bb5f99b6840fbde40b3a6d99a7</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-09-12T14:49:40</pubDate></item><item><title>用友U8-Cloud-MeasureQResultAction-SQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484652&amp;idx=1&amp;sn=17d952c6d3f19da0cead62f22dee5d5d</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-09-06T18:06:40</pubDate></item><item><title>一次某大学真实的攻防记录</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484646&amp;idx=1&amp;sn=e8b8efe79bbd52449ca8df608df02348</link><description>声明： 本次演练中，所有测试设备均由主办方提供，所有流量均有留档可审计，所有操作均在授权下完成，所有数据在结束</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-09-03T08:00:15</pubDate></item><item><title>用友NC/link/content-SQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484589&amp;idx=1&amp;sn=b62a3fcc967bb87f3c0fd30d0abacba1</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-09-02T08:00:12</pubDate></item><item><title>网安探索队交流群，欢迎加群，欢迎交流。</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484576&amp;idx=1&amp;sn=35720a5d93d991b1b604169f316f3192</link><description>欢迎加群</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-09-01T09:22:29</pubDate></item><item><title>百易云资产管理运营系统comfileup.php文件上传【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484554&amp;idx=1&amp;sn=8ecdf1c90684e3d30abcd7e4ae88606b</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-31T10:46:21</pubDate></item><item><title>同鑫EHR人力资源管理系统GetFlowDropDownListItems-SQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484531&amp;idx=1&amp;sn=0b3b606aa4d6900c327b8bcadeb1281e</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-30T14:21:24</pubDate></item><item><title>用友畅捷通CRM-newleadset.phpSQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484484&amp;idx=1&amp;sn=aec134a2a02674a5fa58b50ebc0ccd30</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-29T09:45:10</pubDate></item><item><title>天锐绿盾审批系统trwfe接口存在文件上传【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484470&amp;idx=1&amp;sn=09baf1a6cd01b7e459e3b08b5f4e165c</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-28T11:37:16</pubDate></item><item><title>全程云OA接口UploadFile文件上传【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484431&amp;idx=1&amp;sn=ea587dd849dc6971ab8d42b146feb3df</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-27T09:26:12</pubDate></item><item><title>网安探索队开放公开交流群【欢迎加入】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484416&amp;idx=1&amp;sn=4c03edc9ab69cb08239ed81451715fc9</link><description></description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-26T08:00:13</pubDate></item><item><title>用友NC系统FileManager接口处存在任意文件上传【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484411&amp;idx=1&amp;sn=b1d24eeaaf77e7ca957127f11d810df4</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-25T10:41:03</pubDate></item><item><title>用友U8-Cloud系统BusinessRefAction接口SQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484367&amp;idx=1&amp;sn=43f6b15074e301b30016a54ff372cb55</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-24T09:00:56</pubDate></item><item><title>金和OA-C6协同管理平台DBModules.aspx存在SQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484341&amp;idx=1&amp;sn=e677dc4b340a39d378cdd68fd2754eb3</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-23T09:12:57</pubDate></item><item><title>泛微e-cology-v10-rce【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484289&amp;idx=1&amp;sn=e9f667c544d704089b49aea0dce908b1</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-22T12:42:48</pubDate></item><item><title>用友NC psnImage download SQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484234&amp;idx=1&amp;sn=12dcdcb9faefa5c5eca7f5717554aab6</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-21T11:29:17</pubDate></item><item><title>用友U8-CRM-reservationcomplete-RCE[漏洞复现]</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484163&amp;idx=1&amp;sn=3240e4d8e02595e2ab08b5b354d8d3ed</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-19T09:41:17</pubDate></item><item><title>Wookteam团队在线协作工具SQL注入【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484107&amp;idx=1&amp;sn=d180086e9e68072647e410726df2549c</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-18T00:01:27</pubDate></item><item><title>泛微e-office-mobile_upload_save 任意文件上传漏洞【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247484002&amp;idx=1&amp;sn=5c589d7bbb43a92025c8099f39104e10</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-17T09:37:00</pubDate></item><item><title>Mitmproxy和JsRpc与Burp Suite进行自动化的解密</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247483987&amp;idx=1&amp;sn=43bb2fa59c8f40ca5da0d67b4bfe78bf</link><description>点击上方公众号关注我们建议大家把公众号“网安探索队”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-16T20:58:34</pubDate></item><item><title>泛微 e-office 10 schema_mysql.sql敏感信息泄露【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247483916&amp;idx=1&amp;sn=a72103fdfd384411348c753694504211</link><description>点击上方蓝字关注我们建议大家把公众号“POC探索者小站”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-15T09:39:33</pubDate></item><item><title>用友U8-CRM-import文件上传【漏洞复现】</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247483863&amp;idx=1&amp;sn=5ade2626c10f3466cb50bf7c82124f35</link><description>建议大家把公众号“POC探索者小站”设为星标，否则可能就看不到啦！因为公众号现在只对常读和星标的公众号才能展示大图推送。</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-14T08:07:31</pubDate></item><item><title>契约锁电子签章平台-add-远程命令执行漏洞-XVE-2023-23720</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247483811&amp;idx=1&amp;sn=30af697a6019c32da6b8654c7ce93230</link><description>点击上方蓝字关注我们建议大家把公众号“POC探索者小站”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-13T14:41:25</pubDate></item><item><title>契约锁电子签章平台 /param/edits 远程代码执行漏洞复现(XVE-2024-18394)</title><link>https://mp.weixin.qq.com/s?__biz=Mzg3NTk4MDQ1NA==&amp;mid=2247483799&amp;idx=1&amp;sn=623dda2875ef9b153d9b047a0cf3675c</link><description>点击上方蓝字关注我们建议大家把公众号“POC探索者小站”设为星标，否则可能就看不到啦！</description><author>网安探索队</author><category>网安探索队</category><pubDate>2024-08-12T19:38:33</pubDate></item></channel></rss>