Risk: on the system exists the function allows the data export query results, work out in the form of excel files however this function have the following vulnerabilities can expose the system's data:-Exel Files be stored in subdirectories of the webapp directory.Exel-File after the download users are not deleted.-Allows direct access to the excel files that do not pass authentication.-For example, The following link will allow to download an excel file that was previously exported system without authentication through the steps:-http://abc.com:8080/ams/share/report_out/exportDMHangHoa20121022090909.xlsPrevention: The data stored in the folder outside the web server installation directory, download the implementation this data must pass the authentication steps and parameters are encoded.
đang được dịch, vui lòng đợi..