cve/CVE-2021-41293.md at ae7c8ffaeab2dbdfe8daabfe5c8c852b33cc867f

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

0xMarcio d6bcaa53f2 Update CVE sources 2024-07-25 21:25

2024-07-25 21:25:12 +00:00

Description

ECOA BAS controller suffers from a path traversal vulnerability, causing arbitrary files disclosure. Using the specific POST parameter, unauthenticated attackers can remotely disclose arbitrary files on the affected device and disclose sensitive and system information.

POC

Reference

No PoCs from references.

Github

https://github.com/20142995/nuclei-templates
https://github.com/ARPSyndicate/cvemon
https://github.com/ARPSyndicate/kenzer-templates

1.5 KiB Raw Blame History

CVE-2021-41293

Description

POC

Reference

Github

1.5 KiB

Raw Blame History