Submeter #780839: Xiaopi Web Application Firewall V1.0.0 Bypassinformação

TítuloXiaopi Web Application Firewall V1.0.0 Bypass
DescriçãoThe vulnerability exists in the official WAF firewall of Xiaopi Panel, where inadequate filtering of user input by WAF rules allows attackers to execute malicious code through carefully crafted injection statements. Although WAF protection is in place, attackers can still bypass restrictions using specific formats and encoding techniques to achieve injection attacks.
Fonte⚠️ https://github.com/ltranquility/vuln_submit/issues/1
Utilizador Customer (UID 83474)
Submissão16/03/2026 14h19 (há 21 dias)
Moderação01/04/2026 15h58 (16 days later)
EstadoAceite
Entrada VulDB354666 [Xiaopi Panel 1.0.0 WAF Firewall /demo.php param Script de Site Cruzado]
Pontos18

VoltarVisão GeralPróximo

Do you know our Splunk app?

Download it now for free!