漏洞描述
BLINK routers 是由 BLINK 公司生产的路由器设备,广泛应用于家庭和企业网络环境。BLINK routers 的 set_manpwd 接口存在命令执行漏洞,攻击者可以通过该漏洞执行任意命令,从而获取服务器权限并对系统造成严重威胁。
BLINK Routers /goform/set_manpwd 命令执行漏洞(CVE-2025-1608)
PoC代码
暂无相关漏洞推荐
- POC CVE-2019-19822: TOTOLINK/Realtek Routers - Information Disclosure
- POC CVE-2019-19823: TOTOLINK/Realtek Routers - Information Disclosure
- POC CVE-2019-19825: TOTOLINK/Realtek Routers - CAPTCHA Bypass
- BLINK routers set_AdvDns_cfg 命令执行漏洞
- POC CVE-2016-6277: NETGEAR Routers - Remote Code Execution
- POC CVE-2017-15647: FiberHome Routers - Local File Inclusion
- POC CVE-2017-5521: NETGEAR Routers - Authentication Bypass
- POC CVE-2018-10822: D-Link Routers - Local File Inclusion
- POC CVE-2018-10823: D-Link Routers - Remote Command Injection
- POC CVE-2019-1653: Cisco Small Business WAN VPN Routers - Sensitive Information Disclosure
- POC CVE-2019-16920: D-Link Routers - Remote Code Execution
- POC CVE-2019-18371: Xiaomi Mi WiFi R3G Routers - Local file Inclusion
- POC CVE-2019-19824: TOTOLINK Realtek SD Routers - Remote Command Injection