漏洞描述
DynamoDB Admin 控制台未经身份验证的用户可以公开访问。导致控制数据库
DynamoDB Admin 控制台未授权访问
PoC代码
暂无相关漏洞推荐
- hue-default-credential: Cloudera Hue Default Admin Login
- POC CVE-2005-3344: Horde Groupware Unauthenticated Admin Access
- POC CVE-2007-5728: phpPgAdmin <=4.1.1 - Cross-Site Scripting
- POC CVE-2008-5587: phpPgAdmin <=4.2.1 - Local File Inclusion
- POC CVE-2009-1151: PhpMyAdmin Scripts - Remote Code Execution
- POC CVE-2011-4926: Adminimize 1.7.22 - Cross-Site Scripting
- POC CVE-2015-2794: DotNetNuke 07.04.00 - Administration Authentication Bypass
- POC CVE-2015-2863: Kaseya Virtual System Administrator - Open Redirect
- POC CVE-2015-4127: WordPress Church Admin <0.810 - Cross-Site Scripting
- POC CVE-2016-1000126: WordPress Admin Font Editor <=1.8 - Cross-Site Scripting
- POC CVE-2016-1000138: WordPress Admin Font Editor <=1.8 - Cross-Site Scripting
- POC CVE-2016-5649: NETGEAR DGN2200 / DGND3700 - Admin Password Disclosure
- POC CVE-2017-14524: OpenText Documentum Administrator 7.2.0180.0055 - Open Redirect