漏洞描述
Hytec Inter HWL-2511-SS中存在命令注入漏洞,该漏洞是由于popen.cgi接口对用户的请求验证不当导致的。
Hytec Inter HWL-2511-SS popen.cgi 命令注入漏洞
PoC代码
暂无相关漏洞推荐
- 新中大ERP企业管理软件 /filesrv/NGInterface/Index SQL 注入漏洞
- spon-ip-intercom-file-read: Spon Ip Intercom File Read
- POC CVE-2018-2392: SAP Internet Graphics Server (IGS) - XML External Entity Injection
- POC CVE-2020-12447: Onkyo TX-NR585 Web Interface - Directory Traversal
- POC CVE-2020-2036: Palo Alto Networks PAN-OS Web Interface - Cross Site-Scripting
- POC CVE-2021-41569: SAS/Internet 9.4 1520 - Local File Inclusion
- POC CVE-2021-46387: Zyxel ZyWALL 2 Plus Internet Security Appliance - Cross-Site Scripting
- POC CVE-2022-23779: Zoho ManageEngine - Internal Hostname Disclosure
- POC CVE-2022-36553: Hytec Inter HWL-2511-SS - Remote Command Execution
- POC CVE-2022-48197: Yahoo User Interface library (YUI2) TreeView v2.8.2 - Cross-Site Scripting
- POC CVE-2023-37265: CasaOS < 0.4.4 - Authentication Bypass via Internal IP
- POC CVE-2023-43323: mooSocial 3.1.8 - External Service Interaction
- POC CVE-2024-0012: PAN-OS Management Web Interface - Authentication Bypass