漏洞描述
【漏洞对象】LG智能摄像头 【涉及版本】软件版本小于1508190 【漏洞描述】LG智能摄像头是韩国家电企业LG的家用摄像头产品。其软件版本小于1508190时,存在敏感文件泄露问题,攻击者可以在未授权的情况下下载日志文件t.report,其中包含了软件版本和配置信息,攻击者可借此展开下一步攻击。
LG智能摄像头t.report-敏感文件下载
PoC代码
暂无相关漏洞推荐
- 天锐绿盾审批系统 tdSysFindDepartmentTree.do 信息泄露漏洞
- POC CVE-2016-15041: MainWP Dashboard <= 3.1.2 - Stored Cross-Site Scripting
- POC CVE-2018-7765: Schneider Electric U.motion Builder - SQL Injection
- POC CVE-2019-12935: Shopware < 5.5.8 - Cross-Site Scripting
- POC CVE-2019-14206: Nevma Adaptive Images - Arbitrary File Deletion
- POC CVE-2020-19363: Vtiger CRM v7.2.0 - Directory Listing
- POC CVE-2020-9039: Couchbase Server - Broken Access Control
- POC CVE-2021-28799: QNAP HBS 3 - Broken Access Control
- POC CVE-2021-37598: WP Cerber < 8.9.3 - Broken Access Control
- POC CVE-2022-37932: HP Switch - Authentication Bypass
- POC CVE-2023-33960: OpenProject < 12.5.4 - Project Identifiers Exposure
- POC CVE-2023-52163: Digiever DS-2105 Pro - Command Injection
- POC CVE-2024-29137: WordPress Tourfic Plugin <= 2.11.7 - Cross-Site Scripting