漏洞描述
当应用程序基于用户提供的输入提供对对象的直接访问时,会出现不正确的访问控制。由于此漏洞,攻击者可以绕过授权并访问资源 在受保护的页面后面。
FatPipe Networks WARP 登录绕过
PoC代码
暂无相关漏洞推荐
- (CVE-2025-4617)Palo Alto Networks Prisma Browser截图控制绕过漏洞
- (CVE-2025-4618)Palo Alto Networks Prisma Browser敏感信息泄露漏洞
- CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- POC CVE-2018-10141: Palo Alto Networks PAN-OS GlobalProtect <8.1.4 - Cross-Site Scripting
- POC CVE-2020-2036: Palo Alto Networks PAN-OS Web Interface - Cross Site-Scripting
- POC CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- POC CVE-2023-20889: VMware Aria Operations for Networks - Code Injection Information Disclosure Vulnerability
- POC CVE-2024-9463: PaloAlto Networks Expedition - Remote Code Execution
- POC CVE-2025-0107: Palo Alto Networks Expedition - OS Command Injection
- POC limit-networkaccess-disabled: Limit Network Access to Selected Networks - Disabled
- POC CVE-2022-22242: Juniper Networks Junos OS 错误页面反射 XSS 漏洞
- POC CVE-2024-0012: Palo Alto Networks PAN-OS身份认证绕过导致RCE漏洞(CVE-2024-0012)
- POC versa-default-password: Versa Networks SD-WAN Application Default Login