| Titre | Baizhuo Network PatrolFlow PatrolFlow-AM-2530Pro Arbitrary file read vulnerability |
|---|
| Description | PatrolFlow-AM-2530Pro Management Platform Arbitrary File Reading Vulnerability in Baizhuo Network Mailsendview.php.
Attackers can exploit vulnerabilities to gain server privileges or cause business impact on the system.
Construct the file parameter by using/boot/phpConfiguration/tb_ Admin.txt, read the login account password. With the account password, you can directly log in to the background or read any file in the system. |
|---|
| La source | ⚠️ https://github.com/kpz-wm/cve |
|---|
| Utilisateur | Anonymous User |
|---|
| Soumission | 26/11/2023 07:40 (il y a 3 ans) |
|---|
| Modérer | 07/12/2023 13:49 (11 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 247157 [Byzoro PatrolFlow 2530Pro jusqu’à 20231126 /log/mailsendview.php Fichier directory traversal] |
|---|
| Points | 20 |
|---|