| عنوان | Draytek Vigor 2960v1.5.1.4 has arbitrary file deletion vulnerability in in function sub_1DF14, file mainfunction.cgi |
|---|
| الوصف | This vulnerability is affect Product: Draytek Vigor 2960 v1.5.1.4(the newest version), Firmware: v1.5.1.4, download link: https://fw.draytek.com.tw/Vigor2960/Firmware/v1.5.1.4/Vigor2960_v1.5.1.4.zip
It doesn’t filter var opion , so we can use /../ to path traversal. As a result, it will delete the specific file.
You can see the screenshot. The file etc/pptpd.conf is disappear, after we send poc. |
|---|
| المصدر | ⚠️ https://github.com/xxy1126/Vuln/blob/main/Draytek/4.md |
|---|
| المستخدم | Tmotfl (UID 41304) |
|---|
| ارسال | 25/02/2023 07:44 AM (3 سنوات منذ) |
|---|
| الاعتدال | 03/03/2023 07:47 AM (6 days later) |
|---|
| الحالة | مكرر |
|---|
| إدخال VulDB | 221742 [DrayTek Vigor 2960 1.5.1.4/1.5.1.5 Web Management Interface mainfunction.cgi sub_1DF14 option اجتياز الدليل] |
|---|
| النقاط | 0 |
|---|