| Título | Draytek Vigor 2960v1.5.1.4 has arbitrary file deletion vulnerability in in function sub_1DF14, file mainfunction.cgi |
|---|
| Descrição | This vulnerability is affect Product: Draytek Vigor 2960 v1.5.1.4(the newest version), Firmware: v1.5.1.4, download link: https://fw.draytek.com.tw/Vigor2960/Firmware/v1.5.1.4/Vigor2960_v1.5.1.4.zip
It doesn’t filter var opion , so we can use /../ to path traversal. As a result, it will delete the specific file.
You can see the screenshot. The file etc/pptpd.conf is disappear, after we send poc. |
|---|
| Fonte | ⚠️ https://github.com/xxy1126/Vuln/blob/main/Draytek/4.md |
|---|
| Utilizador | Tmotfl (UID 41304) |
|---|
| Submissão | 25/02/2023 07h44 (há 3 anos) |
|---|
| Moderação | 03/03/2023 07h47 (6 days later) |
|---|
| Estado | Duplicado |
|---|
| Entrada VulDB | 221742 [DrayTek Vigor 2960 1.5.1.4/1.5.1.5 Web Management Interface mainfunction.cgi sub_1DF14 option Travessia de Diretório] |
|---|
| Pontos | 0 |
|---|