Sidit Wi Fi Web Management Jumpto Php Background Command Execution Vulnerability
Sidit Wi Fi Web Management Jumpto Php Background Command Execution Vulnerability
Sidit Wi-Fi Web Management jumpto.php background command execution vulnerability
Vulnerability Description
Sidit Wi-Fi Web Management System Insufficient Backend Filtering Causes Remote Command Execution Vulnerability
Vulnerability Impact
Sidit Wi-Fi Web Management
Network surveying and mapping
Vulnerability recurrence o
Login page
Get permission through overriding vulnerabilities and add cookies
1
Cookie: timestamp=0; cooLogin=1; cooUser=admin
After entering the background, there is a command splicing execution vulnerability in the diagnosis function point.
This post is licensed under CC BY 4.0 by the author.