漏洞描述
Badger Meter Monitool是一款用于水务部门终端管理的软件,Badger Meter Monitool存在sql注入漏洞,此漏洞是由于j_spring_security_check接口对用户的请求验证不当导致的。
Badger Meter Monitool CVE-2024-1301 SQL注入漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2022-23544: MeterSphere < 2.5.0 SSRF
- POC CVE-2023-25573: Metersphere - Arbitrary File Read
- POC CVE-2023-25573: Metersphere 任意文件读取漏洞
- POC metersphere-plugincontroller-rce: MeterSphere PluginController Pre-auth RCE
- POC codemeter-webadmin: CodeMeter Webadmin Dashboard
- POC metersphere-plugin-rce: MeterSphere - Remote Code Execution
- MeterSphere 插件接口未授权访问及远程代码执行漏洞
- MeterSphere 弱口令漏洞
- MeterSphere任意文件上传漏洞(CVE-2021-45790)
- CCMeter流量仪表在线实时监控管理系统存在默认口令
- Metersphere CVE-2021-45789目录遍历漏洞
- Metersphere CVE-2021-45790目录遍历漏洞
- MeterSphere 文件读取漏洞(CVE-2023-25814)