admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-08 12:25:11 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/网络设备漏洞/JCG JHR-N835R 后台命令执行漏洞.md

29 lines
511 B
Markdown
Raw Normal View History

update
2024-11-06 14:10:36 +08:00
# JCG JHR-N835R 后台命令执行漏洞
## 漏洞描述
JCG JHR-N835R 后台存在命令执行,通过 ; 分割 ping 命令导致任意命令执行
## 漏洞影响
```
JCG JHR-N835R
```
## Shodan
```
JHR-N835R
```
## 漏洞复现
登录页面 admin admin登录
![image-20220209202626135](images/202202092026189.png)
在后台系统工具那使用 PING工具使用 ; 命令执行绕过
![image-20220209202640541](images/202202092026647.png)
![image-20220209202702580](images/202202092027634.png)
Reference in New Issue Copy Permalink