mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
803 B
803 B
CVE-2018-16282
Description
A command injection vulnerability in the web server functionality of Moxa EDR-810 V4.2 build 18041013 allows remote attackers to execute arbitrary OS commands with root privilege via the caname parameter to the /xml/net_WebCADELETEGetValue URI.
POC
Reference
- https://gist.github.com/tim124058/5c4babe391a016c771d2cccabead21cb
- https://gist.github.com/tim124058/5c4babe391a016c771d2cccabead21cb
Github
No PoCs found on GitHub currently.