ÿÖÜÉý¼¶Í¨¸æ-2022-07-31

Ðû²¼Ê±¼ä 2022-07-31
ÐÂÔöÊÂÎñ

 

ÊÂÎñÃû³Æ£º

TCP_ÌáȨ¹¥»÷_Apache_Log4j2±äÐÎÈƹý_´úÂëÖ´ÐÐ

Çå¾²ÀàÐÍ£º

Çå¾²Îó²î

ÊÂÎñÐÎò£º

ApacheLog4j2ÊÇÒ»¸öÓÃÓÚJavaµÄÈÕÖ¾¼Í¼¿â £¬ÆäÖ§³ÖÆô¶¯Ô¶³ÌÈÕÖ¾·þÎñÆ÷¡£ÔÚApacheLog4j22.14.1֮ǰµÄ2.x°æ±¾Öб£´æÇå¾²Îó²î¡£¹¥»÷Õß¿ÉʹÓøÃÎó²îÔ¶³ÌÖ´ÐÐí§Òâ´úÂë

¸üÐÂʱ¼ä£º

20220731

 

ÊÂÎñÃû³Æ£º

HTTP_Îļþ²Ù×÷¹¥»÷_JQuery_1.7.2_í§ÒâÎļþÏÂÔØ

Çå¾²ÀàÐÍ£º

Çå¾²Îó²î

ÊÂÎñÐÎò£º

ʹÓÃÁËJQuery1.7.2µÄJavaScript¿âµÄÕ¾µã¿Éͨ¹ýǰ̨í§ÒâÎļþÏÂÔØ £¬¿É¶ÁÈ¡Ãô¸ÐÎļþ¡£¸ÃÎó²îÊÇÓÉÓÚsys_dia_data_downÎļþÏÂÔع¦Ð§Î´¶ÔÓû§Ìá½»µÄfile²ÎÊý¾ÙÐмì²â £¬Ö±½ÓÆ´½Óµ½ÁË·¾¶ÖÐ £¬µ¼Ö¿ÉÒÔÌøĿ¼ £¬ÏÂÔØÆäËûĿ¼ÏµÄÎļþ¡£

¸üÐÂʱ¼ä£º

20220731

 

ÐÞ¸ÄÊÂÎñ

 

ÊÂÎñÃû³Æ£º

HTTP_ÆäËü¿ÉÒÉÐÐΪ_Shiro_Cookie³¤¶ÈÒì³£

Çå¾²ÀàÐÍ£º

¿ÉÒÉÐÐΪ

ÊÂÎñÐÎò£º

ApacheShiroĬÈÏʹÓÃÁËCookieRememberMeManager¡£Æä´¦Öóͷ£cookieµÄÁ÷³ÌÊÇ£º»ñµÃrememberMeµÄcookieÖµ£»Base64½âÂ룻AES½âÃÜ£»·´ÐòÁл¯¡£È»¶øAESµÄÃÜÔ¿ÊÇÓ²±àÂëµÄ £¬¼´AES¼Ó½âÃܵÄÃÜÔ¿ÊÇдËÀÔÚ´úÂëÖеÄ £¬¹¥»÷Õß¿ÉÒԽṹ¶ñÒâÊý¾ÝÔì³É·´ÐòÁл¯Îó²î £¬cookie³¤¶ÈÒì³£ÌáÐÑ¿ÉÄÜΪ¹¥»÷Õ߽ṹµÄ¶ñÒâpayload¡£

¸üÐÂʱ¼ä£º

20220731