【7.10】-威胁情报汇总

发布于 作者:

原文链接: https://mp.weixin.qq.com/s?__biz=Mzk0MTIzNTgzMQ==&mid=2247521985&idx=1&sn=64ba7e2474ed598b17196af43833e2c2

【7.10】-威胁情报汇总

亿人安全 2025-07-10 11:33

漏洞情报:
1. 信呼 OA
:uploawAction.php 存在 SQL 注入漏洞,网传利用路径为 /index.php/webmain/task/api/uploawAction.php(在野利用)

  1. 用友 NC
    :getFormItem doPost 存在 SQL 注入漏洞

  2. 美特 CRM
    :mobileupload.jsp 存在任意文件上传漏洞(在野利用)

  3. 金和 OA

  4. AddTask 存在 XXE 漏洞

  5. AddTask 存在 SQL 注入漏洞

  6. C6 版本中 TaskReportConfirm.aspx 存在 SQL 注入漏洞

  7. ZnAiops 智能运维管理平台
    :agent 存在远程命令执行漏洞(在野利用)

  8. 致远 OA
    :前台存在任意文件读取漏洞

  9. 空气质量检测联网检测管理平台
    :/Default/FileUpload 存在任意文件上传漏洞

  10. 锐捷 RG-MCP 云营销平台

  11. /servlet/masterAndslaveServlet 存在命令执行漏洞

  12. /thirdwifi0pen/thirdwifi0pen!setAppIdAuthen.action 存在命令执行漏洞

  13. 泛微 OA

  14. block content.php 存在 SQL 注入漏洞

  15. E-Cology 存在登录绕过漏洞

  16. U-Mai
    :存在任意文件上传漏洞

  17. 零信任
    :存在任意密码重置漏洞

  18. 新炬网络智能运维管理平台
    :agent 存在未授权远程命令执行漏洞(在野利用)

  19. 灵当 CRM
    :XlsFileUpload.php 存在任意文件上传漏洞

威胁IP: 

212.64.65.140
212.64.24.94
212.64.10.245
212.129.223.49
211.97.92.164
218.104.149.24
218.98.53.30
221.15.166.54
221.15.141.169
221.15.10.187
221.130.18.22
221.13.58.66
221.13.0.54
221.0.117.170
220.250.6.142
220.250.6.140
220.250.10.27
220.205.252.199
125.39.239.72
125.39.239.69
125.39.196.221
125.39.196.193
125.39.186.42
125.39.186.41
125.37.133.202
125.37.133.162
125.37.133.151
125.67.215.188
129.211.28.15
124.71.106.116
124.223.67.231
124.223.54.76
124.223.32.16
124.223.220.137
124.223.218.3
124.223.6.8
124.71.110.163
125.46.215.36
202.110.108.230
211.101.238.231
183.42.144.160
183.255.104.84
183.240.228.22
183.240.228.21
183.240.225.22
183.240.225.21
183.240.19.6
183.240.182.22
183.240.182.21
183.240.16.136
183.240.16.135
183.240.16.134
183.236.50.239
183.232.40.227
183.232.40.226
183.232.189.184
183.240.230.21
183.240.230.22
183.240.66.132
124.71.152.79
124.71.139.126
124.71.137.28
124.71.136.141
124.71.202.76
125.124.199.12
125.119.79.91
124.90.49.250
124.90.134.45
124.72.116.224
125.37.128.75
124.71.70.169
124.71.224.84
124.71.223.58
124.71.74.122
124.222.91.4
124.222.82.19
124.223.200.131
124.223.94.229
124.223.107.49
14.204.50.153
14.204.35.151
14.204.35.133
14.204.143.22
14.204.143.21
14.153.26.194
139.9.61.175
139.9.43.131
139.9.219.175
139.9.212.17
139.9.211.17
139.9.205.12
139.9.193.13
14.103.163.209
14.103.163.207
14.103.163.198
14.103.163.208
132.232.105.71
129.28.200.224
124.70.137.116
124.70.109.117
124.70.10.219
124.70.0.56
124.70.0.130
124.66.77.147
124.64.23.90
124.64.23.104
124.64.22.64
124.31.107.154
124.70.99.224
124.70.83.210
124.70.77.173
124.70.31.186
124.70.31.150
124.70.219.41
124.70.204.188
124.70.196.94
124.70.180.22
124.23.134.129
124.223.195.227
124.223.186.148