漏洞描述
BigAnt Software BigAnt Server存在目录遍历漏洞,此漏洞是由于对true_path参数值校验不足导致的。
BigAnt Software BigAnt Server 目录遍历漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2022-23347: BigAnt Server v5.6.06 - Local File Inclusion
- POC CVE-2022-23348: BigAnt Server 5.6.06 - Improper Access Control
- POC bigant-default-login: BigAnt - Default Password
- POC bigant-db-install: Bigant DataBase - Exposed Installation
- 杭州九麒科技 BigAnt-Admin /Addin/Upload/uploadMultipleFile.html 文件上传漏洞
- 杭州九麒科技BigAnt-Admin down存在任意文件读取漏洞
- 杭州九麒科技 BigAnt-Admin uploadMultipleFile.html 任意文件上传漏洞
- BigAnt Server 信息泄露漏洞
- BigAnt admin /Addin/Upload/uploadMultipleFile.html 任意文件上传漏洞
- BigAnt admin /api/common/upload.html 任意文件上传漏洞
- BigAnt Server 任意文件下载(CVE-2022-23347)
- BigAnt Server 信息泄漏(CVE-2022-23348)
- Bigant 任意文件读取漏洞(CVE-2022-23347)