Jinpan Wechat Management Platform Getsysteminfo Unauthorized Access Vulnerability
Jinpan Wechat Management Platform Getsysteminfo Unauthorized Access Vulnerability
Jinpan WeChat management platform getsysteminfo Unauthorized access vulnerability
Vulnerability Description
Jinpan WeChat management platform There is an unauthorized access vulnerability in the getsysteminfo interface. The attacker can obtain account password information through the vulnerability and obtain background administrator permissions.
Vulnerability Impact
Golden disk WeChat management platform
Network surveying and mapping
Vulnerability reappears
Login page
Verify POC
1
/admin/weichatcfg/getsysteminfo
This post is licensed under CC BY 4.0 by the author.