VULHUB ™

### 简要描述： RT ### 详细说明： 山东农友软件公司官网:http://www.nongyou.com.cn/ 案例如下: http://221.2.156.181:8100/jubao/ProblemsWarning.aspx?pid=1 http://221.2.171.59:8000/jubao/ProblemsWarning.aspx?pid=1 http://222.135.76.147:8100/jubao/ProblemsWarning.aspx?pid=1 http://222.135.109.70:8100/jubao/SProblemsWarning.aspx?pid=1 http://61.133.119.187:8089/jubao/ProblemsWarning.aspx?pid=1 http://60.217.72.17:8000/jubao/ProblemsWarning.aspx?pid=1 http://111.17.169.210:801/jubao/ProblemsWarning.aspx?pid=1 1.测试案例:http://221.2.171.59:8000/jubao/ProblemsWarning.aspx?pid=1 [<img src="https://images.seebug.org/upload/201501/311249037a624168912b7bdbd7423e1c7df4545f.png" alt="3.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/311249037a624168912b7bdbd7423e1c7df4545f.png) 2.测试案例:http://222.135.76.147:8100/jubao/ProblemsWarning.aspx?pid=1 [<img src="https://images.seebug.org/upload/201501/311250034f3fa4224ef4e98d2c90b2332e9881af.png" alt="4.png" width="600"...

### 简要描述： RT ### 详细说明： 山东农友软件公司官网:http://www.nongyou.com.cn/ 案例如下: http://221.2.156.181:8100/jubao/ProblemsWarning.aspx?pid=1 http://221.2.171.59:8000/jubao/ProblemsWarning.aspx?pid=1 http://222.135.76.147:8100/jubao/ProblemsWarning.aspx?pid=1 http://222.135.109.70:8100/jubao/SProblemsWarning.aspx?pid=1 http://61.133.119.187:8089/jubao/ProblemsWarning.aspx?pid=1 http://60.217.72.17:8000/jubao/ProblemsWarning.aspx?pid=1 http://111.17.169.210:801/jubao/ProblemsWarning.aspx?pid=1 1.测试案例:http://221.2.171.59:8000/jubao/ProblemsWarning.aspx?pid=1 [<img src="https://images.seebug.org/upload/201501/311249037a624168912b7bdbd7423e1c7df4545f.png" alt="3.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/311249037a624168912b7bdbd7423e1c7df4545f.png) 2.测试案例:http://222.135.76.147:8100/jubao/ProblemsWarning.aspx?pid=1 [<img src="https://images.seebug.org/upload/201501/311250034f3fa4224ef4e98d2c90b2332e9881af.png" alt="4.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/311250034f3fa4224ef4e98d2c90b2332e9881af.png) 均可复现。 ### 漏洞证明： 1.测试案例:http://221.2.171.59:8000/jubao/ProblemsWarning.aspx?pid=1 [<img src="https://images.seebug.org/upload/201501/311249037a624168912b7bdbd7423e1c7df4545f.png" alt="3.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/311249037a624168912b7bdbd7423e1c7df4545f.png) 2.测试案例:http://222.135.76.147:8100/jubao/ProblemsWarning.aspx?pid=1 [<img src="https://images.seebug.org/upload/201501/311250034f3fa4224ef4e98d2c90b2332e9881af.png" alt="4.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/311250034f3fa4224ef4e98d2c90b2332e9881af.png)