修复没有指定poc时的bug

SummerSec · SummerSec · commit daacabc53a5b · 2022-05-06T22:23:39.000+08:00
diff --git a/cmd/commons/attack/attack.go b/cmd/commons/attack/attack.go
@@ -44,21 +44,29 @@ func attack(url string, pocs map[string]interface{}, hashmap map[string]interfac
 	p := hashmap["Pocs"].(string)
 	// 以,分割,获取poc name 将其转换为数组
 	pocsName := strings.Split(p, ",")
-	var ps []string
-	for _, v := range pocsName {
-		log.Debugf("[*] 分割字符串 %s", v)
-		ps = append(ps, v)
-	}
+	//log.Debugf("[*] Pocs: %s", pocsName)
+	//var ps []string
+	//if pocsName != nil {
+	//	for _, v := range pocsName {
+	//		log.Debugf("[*] 分割字符串 %s", v)
+	//		ps = append(ps, v)
+	//	}
+	//}
 	// 如果没有选定字符串 则默认所有pocs
-	if len(ps) == 0 {
-		log.Debugln("[*] attack all pocs")
+	if len(pocsName) == 1 && pocsName[0] == "" {
+		log.Info("[*] attack all pocs")
 		for _, v := range pocs {
+			log.Debugf("[*] attack poc %s", v)
 			t := v.(poc.PoC)
 			t.SendPoc(url, hashmap)
 		}
 	} else {
-		for p := range ps {
-			pocs[ps[p]].(poc.PoC).SendPoc(url, hashmap)
+		for _, v := range pocsName {
+			log.Info("[*] attack poc %s", v)
+			if v != "" {
+				t := pocs[v].(poc.PoC)
+				t.SendPoc(url, hashmap)
+			}
 		}
 	}
 
diff --git a/cmd/commons/poc/2021/CVE-2021-26084.go b/cmd/commons/poc/2021/CVE-2021-26084.go
@@ -43,7 +43,7 @@ func (p CVE202126084) SendPoc(target string, hashmap map[string]interface{}) {
 	if p.CheckExp(resp, target, hashmap) {
 		context := target + " 存在CVE-2021-26084漏洞！" + target + "testAnt.jsp 蚁剑密码 ant "
 		log.Info(context)
-		p.SaveResult(target, file)
+		p.SaveResult(context, file)
 	}
 
 }
diff --git a/cmd/commons/poc/2022/CVE-2022-22965.go b/cmd/commons/poc/2022/CVE-2022-22965.go
@@ -81,8 +81,8 @@ func (p CVE202222965) SendPoc(target string, hashmap map[string]interface{}) {
 		time.Sleep(time.Second * 3)
 
 		r, _ := url.Parse(target)
-		log.Debugf("[+] CVE202222965 poc success")
-		res := r.Scheme + "://" + r.Host + "/" + shellname + ".jsp" + "?cmd=whoami or" + r.Scheme + "://" + r.Host + "/" + shellname1 + ".jsp 哥斯拉 pass key "
+		log.Info("[+] CVE202222965 poc success")
+		res := target + " 可能存在CVE202222965没有进行验证 手动验证: " + r.Scheme + "://" + r.Host + "/" + shellname + ".jsp" + "?cmd=whoami or " + r.Scheme + "://" + r.Host + "/" + shellname1 + ".jsp 哥斯拉 pass key  "
 		p.SaveResult(res, hashmap["Out"].(string))
 
 		// 第三个请求

Original file line number	Diff line number	Diff line change
`@@ -43,7 +43,7 @@ func (p CVE202126084) SendPoc(target string, hashmap map[string]interface{}) {`
`43`	`43`	`if p.CheckExp(resp, target, hashmap) {`
`44`	`44`	`context := target + " 存在CVE-2021-26084漏洞！" + target + "testAnt.jsp 蚁剑密码 ant "`
`45`	`45`	`log.Info(context)`
`46`		`- p.SaveResult(target, file)`
	`46`	`+ p.SaveResult(context, file)`
`47`	`47`	`}`
`48`	`48`
`49`	`49`	`}`