Submit #336037: Ruijie Ruijie RG-UAC Unified Internet Behavior Management Audit System Ruijie RG-UAC Unified Internet Behavior Management Audit System Command Injectioninfo

TitleRuijie Ruijie RG-UAC Unified Internet Behavior Management Audit System Ruijie RG-UAC Unified Internet Behavior Management Audit System Command Injection
DescriptionThere is a command execution vulnerability in the Ruijie RG - UAC application management gateway backend /view/vpn/autovpn/online_check.php interface. An attacker can execute arbitrary commands to control server permissions.
Source⚠️ https://github.com/h0e4a0r1t/h0e4a0r1t.github.io/blob/master/2024/z%7CYVDv%7CHKA)*%5CdK!/Ruijie%20RG-UAC%20Unified%20Internet%20Behavior%20Management%20Audit%20System%20Backend%20RCE%20Vulnerability-autovpn%3Aonline_check.php.pdf
User
 H0e4a0r1t (UID 65358)
Submission05/16/2024 10:44 (2 years ago)
Moderation05/24/2024 20:50 (8 days later)
StatusAccepted
VulDB entry266245 [Ruijie RG-UAC up to 20240516 online_check.php peernode os command injection]
Points17

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!