admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 10:16:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add ZBL Remote Privilege Escalation

Browse Source
This commit is contained in:
xiaoheihei1107 2021-08-09 14:13:05 +08:00 committed by GitHub
parent c11b233622
commit 1851284a6d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
ZBL/ZBL EPON ONU Broadband Router 1.0/README.md Normal file
View File

@ -0,0 +1,10 @@
# ZBL EPON ONU Broadband Router 1.0 Remote Privilege Escalation
The limited administrative user admin:admin can elevate her privileges by sending a HTTP GET request to the configuration backup endpoint or the password page and disclose the http super user password. Once authenticated as super, an attacker will be granted access to additional and privileged functionalities.
FOFA **query rule**: [body="HG104B-ZG-E"](https://fofa.so/result?qbase64=Ym9keT0iSEcxMDRCLVpHLUUi)
# Demo
![](ZBL_EPON_ONU_Broadband_Router_1_0_Remote_Privilege_Escalation.gif)