phpok企业建站系统(越权修改任意用户收货地址)

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

### 简要描述: phpok企业建站系统(越权修改任意用户收货地址) ### 详细说明: 1.来到个人中心收货地址添加后编辑抓包 [<img src="https://images.seebug.org/upload/201511/092001035597bd02eabd786a7b223f50d2f42e96.png" alt="·1.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201511/092001035597bd02eabd786a7b223f50d2f42e96.png) 2.id地址是23这个 [<img src="https://images.seebug.org/upload/201511/092002169cefa0a7285ab07de0090775b6df3ea2.png" alt="2.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201511/092002169cefa0a7285ab07de0090775b6df3ea2.png) 3.登录账号二同样操作 [<img src="https://images.seebug.org/upload/201511/09200442cec4f897c2adfd70619258ff7da50c6e.jpg" alt="3.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201511/09200442cec4f897c2adfd70619258ff7da50c6e.jpg) [<img src="https://images.seebug.org/upload/201511/092004474e828c630ac33ccecdd6287326e53cbf.png" alt="4.png" width="600"...

0%
暂无可用Exp或PoC
当前有0条受影响产品信息