Skip to content

Commit 4e97059

Browse files
committed
测试版本 修复部分bug
1 parent 08417d3 commit 4e97059

File tree

12 files changed

+201
-28
lines changed

12 files changed

+201
-28
lines changed

.DS_Store

0 Bytes
Binary file not shown.

README.md

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -17,6 +17,7 @@ ActionHandlerServlet 反序列化
1717
Lfw_Core_Rpc 文件上传
1818
BshServlet RCE
1919
jsinvoke 文件上传
20+
accept.jsp 文件上传
2021
```
2122

2223
后续根据学习进度佛系更新完善poc。
@@ -128,6 +129,11 @@ pass
128129
- 支持漏洞 **jsinvoke 文件上传** 探测利用。
129130
- 修复bug。
130131

132+
### 20240809
133+
134+
- v2.0.3-beta 版本,修复部分bug,剩余 bug 将在 v2.0.3 正式版本完成修复。
135+
- 支持漏洞 **accept.jsp 文件上传** 探测利用。
136+
131137
## 最后
132138

133139
开发过程中参考相关漏洞利用工具:

YONYOU-TOOL.iml

Lines changed: 0 additions & 17 deletions
This file was deleted.

pom.xml

Lines changed: 13 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -56,6 +56,19 @@
5656
<version>1.7.14</version>
5757
</dependency>
5858

59+
<!-- https://mvnrepository.com/artifact/org.apache.httpcomponents/httpclient -->
60+
<dependency>
61+
<groupId>org.apache.httpcomponents</groupId>
62+
<artifactId>httpclient</artifactId>
63+
<version>4.5.13</version>
64+
</dependency>
65+
66+
<dependency>
67+
<groupId>org.apache.httpcomponents</groupId>
68+
<artifactId>httpmime</artifactId>
69+
<version>4.5.13</version>
70+
</dependency>
71+
5972
<!-- https://mvnrepository.com/artifact/org.javassist/javassist -->
6073
<dependency>
6174
<groupId>org.javassist</groupId>

src/.DS_Store

0 Bytes
Binary file not shown.

src/main/.DS_Store

0 Bytes
Binary file not shown.

src/main/java/com/chave/bean/Config.java

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -8,5 +8,5 @@ public class Config {
88
public static String CMD = null;
99
public static String FILENAME = null;
1010
public static String FILETEXT = null;
11-
public static int TIMEOUT = 10000;
11+
public static int TIMEOUT = 15000;
1212
}

src/main/java/com/chave/controller/MainController.java

Lines changed: 9 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -78,6 +78,7 @@ public class MainController {
7878
map.put("lfw_core_rpc 文件上传", "Lfw_Core_Rpc_Upload");
7979
map.put("BshServlet RCE", "BshServlet_RCE");
8080
map.put("jsinvoke 文件上传", "Jsinvoke_Upload");
81+
map.put("accept.jsp 文件上传", "Accept_Upload");
8182
}
8283

8384
@FXML
@@ -88,7 +89,8 @@ public void initialize() {
8889
"ActionHandlerServlet 反序列化",
8990
"lfw_core_rpc 文件上传",
9091
"BshServlet RCE",
91-
"jsinvoke 文件上传"
92+
"jsinvoke 文件上传",
93+
"accept.jsp 文件上传"
9294
));
9395

9496
// 默认选择ALL 关闭探测外所有功能
@@ -229,9 +231,12 @@ private void fileUpload() throws MalformedURLException {
229231
}
230232

231233
private void checkTargetURL() throws MalformedURLException {
232-
if (Config.TARGET != null && !Config.TARGET.trim().isEmpty() && Config.TARGET.trim().endsWith("/")) {
233-
URL url = new URL(Config.TARGET);
234-
Config.TARGET = url.getProtocol() + "://" + url.getHost() + ":" + url.getPort();
234+
URL url = new URL(Config.TARGET);
235+
int port = url.getPort();
236+
if (port == -1) {
237+
Config.TARGET = url.getProtocol() + "://" + url.getHost();
238+
} else {
239+
Config.TARGET = url.getProtocol() + "://" + url.getHost() + ":" + port;
235240
}
236241
}
237242

src/main/java/com/chave/main/Main.java

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ public void start(Stage stage) throws Exception {
1818
Scene scene = new Scene(root);
1919

2020
stage.setScene(scene);
21-
stage.setTitle("YONYOU-TOOL v1.0");
21+
stage.setTitle("YONYOU-TOOL v2.0.3 Beta");
2222
stage.setWidth(810);
2323
stage.setHeight(600);
2424
stage.setResizable(false);

src/main/java/com/chave/vuln/Accept_Upload.java

Lines changed: 159 additions & 0 deletions
Large diffs are not rendered by default.

0 commit comments

Comments
 (0)