漏洞描述
Juniper Web Device Manager是JuniperNetworks公司推出的一款网络设备管理软件。它提供了一个统一的Web界面,允许管理员通过浏览器远程管理和配置JuniperNetworks的各种网络设备。该软件存在任意命令执行漏洞,攻击者可以通过该系统信息。
Juniper设备管理软件存在代码执行漏洞获取Cookie可登陆后台
PoC代码
暂无相关漏洞推荐
- POC CVE-2016-4437: Apache Shiro 1.2.4 Cookie RememberME - Deserial Remote Code Execution Vulnerability
- POC CVE-2017-9822: DotNetNuke 5.0.0 - 9.3.0 - Cookie Deserialization Remote Code Execution
- POC CVE-2019-10405: Jenkins <=2.196 - Cookie Exposure
- POC CVE-2022-0147: WordPress Cookie Information/Free GDPR Consent Solution <2.0.8 - Cross-Site Scripting
- POC CVE-2022-22242: Juniper Web Device Manager - Cross-Site Scripting
- POC CVE-2023-36844: Juniper Devices - Remote Code Execution
- POC CVE-2023-36845: Juniper J-Web - Remote Code Execution
- POC CVE-2024-33610: Sharp Multifunction Printers - Cookie Exposure
- POC CVE-2025-47813: Wing FTP Server <= 7.4.3 - Path Disclosure via Overlong UID Cookie
- POC CNVD-2021-09693: WeiPHP5.0 任意用户Cookie伪造
- POC CVE-2022-22242: Juniper Networks Junos OS 错误页面反射 XSS 漏洞
- POC CVE-2023-36845: Juniper J-Web - Remote Code Execution
- POC seeyon-oa-cookie-leak-login-bypass: Seeyon OA Cookie Leakage