Invia #243584: Baizhuo Network PatrolFlow PatrolFlow-AM-2530Pro Arbitrary file read vulnerabilityinformazioni

TitoloBaizhuo Network PatrolFlow PatrolFlow-AM-2530Pro Arbitrary file read vulnerability
DescrizionePatrolFlow-AM-2530Pro Management Platform Arbitrary File Reading Vulnerability in Baizhuo Network Mailsendview.php. Attackers can exploit vulnerabilities to gain server privileges or cause business impact on the system. Construct the file parameter by using/boot/phpConfiguration/tb_ Admin.txt, read the login account password. With the account password, you can directly log in to the background or read any file in the system.
Fonte⚠️ https://github.com/kpz-wm/cve
Utente
 Anonymous User
Sottomissione26/11/2023 07:40 (3 anni fa)
Moderazione07/12/2023 13:49 (11 days later)
StatoAccettato
Voce VulDB247157 [Byzoro PatrolFlow 2530Pro fino a 20231126 /log/mailsendview.php File directory traversal]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Interested in the pricing of exploits?

See the underground prices here!