Know that Chuangyu cloud monitoring - scanv Max update: Ecology OA unauthorized server request forgery and other two vulnerabilities can be detected

This update ScanV MAX Vulnerability detection plug-in feature library to version ：20220211

New vulnerability detection plug-in 2 individual , Optimize history plugin 7 individual

One 、 New vulnerability detection plug-in

1.Ecology OA Unauthorized server request forgery vulnerability , Plug in update time ：2022 year 02 month 11 Japan

2.Microweber Information leak vulnerability （CVE-2022-0281）, Plug in update time ：2022 year 02 month 11 Japan

Vulnerability related information ：

1.Ecology OA Unauthorized server request forgery vulnerability

Vulnerability plug-in update time :

2022 year 02 month 11 Japan

Vulnerability level :

Middle risk

Holes affect :

Pan Wei e-cology OA An unauthorized server request forgery vulnerability exists in an interface of the system , Unauthorized attackers can use this vulnerability to detect the intranet , Attack intranet system .

scope ：

according to ZoomEye Cyberspace search engine keywords app:" Pan Wei Cooperative Office OA" Search for potential targets , Get... Together 28,160 strip IP Historical record . It is mainly distributed in China 、 The United States and other countries .

（ZoomEye Search for links ：https://www.zoomeye.org/searchResult?q=app%3A%22%E6%B3%9B%E5%BE%AE%20%E5%8D%8F%E5%90%8C%E5%8A%9E%E5%85%ACOA%22）

Global distribution ：

Suggested solution :

The official has not fixed this vulnerability , Vulnerabilities can be temporarily URL Add access control , If there is no functional requirement, the interface file can be deleted .

2.Microweber Information leak vulnerability （CVE-2022-0281）

Vulnerability plug-in update time :

2022 year 02 month 11 Japan

The source of the leak ：

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0281

Vulnerability level :

Middle risk

Holes affect :

 Microweber 1.2.11 Information disclosure vulnerability exists in previous versions . An unauthorized attacker can use this vulnerability to obtain the accounts of all users of the system 、 Email and other information .

scope ：

according to ZoomEye Cyberspace search engine keywords microweber Search for potential targets , Get... Together 20,221 strip IP Historical record . Mainly distributed in Bulgaria 、 The United States and other countries .

（ZoomEye Search for links ：https://www.zoomeye.org/searchResult?q=microweber）

Global distribution ：

Suggested solution :

The official has released an updated patch , Please download and update the affected customers to the safe version in time , Reference link ：https://github.com/microweber/microweber

Reference link :

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0281

Two 、 Plug in optimization 7 individual

1、 Optimize “PHPUnit Remote code execution vulnerability ” Detection logic of plug-in , Reduce false alarm rate

2、 Optimize “Jira Unauthorized users enumerate vulnerabilities ” Scanning method of plug-in

3、 Optimize “WordPress DZS Zoomsounds Arbitrary file download vulnerability ” Detection method of plug-in

4、 Optimize “Jira Template injection Code Execution Vulnerability ” plug-in unit , Improve detection speed

5、 Optimize “Apache APISIX Dashboard Unauthorized access vulnerability ” The logical relationship of plug-ins , Reduce false alarm rate

6、 Optimize “GitLab ExifTool Remote command execution vulnerability ” plug-in unit , Improve detection speed

7、 Optimize “Openfire Server side Request Forgery vulnerability ” Detection method of plug-in

The above plug-ins are updated 、 The optimization comes from Chuangyu security intelligent brain big data analysis platform , The optimization and update made after the analysis of recent vulnerability utilization and utilization methods , Support at the same time WebSOC series .

if there be Relevant business requirements

Please scan Contact an expert for advice

  Click on Read the original

Turn on ScanV MAX Multidimensional stereo monitoring