漏洞描述
【漏洞对象】LG-Ericsson iPECS NMS 30M 【漏洞描述】 LG-Ericsson iPECS NMS 30Mdownload文件filename参数存在任意文件下载漏洞,利用该漏洞可下载系统用户密码文件
LG-Ericsson iPECS NMS 30M Download页面-任意文件下载漏洞
PoC代码
暂无相关漏洞推荐
- KINGOSOFT高校智慧校园教学综合服务平台 /jw/lessonchangeapply/jwComFileDownload.action 文件读取漏洞
- POC CVE-2025-55523: Agent-Zero 0.8.0 - 0.9.4 - Arbitrary File Download
- POC 富勒仓储管理系统 getDownloadFileAction 任意文件读取漏洞
- 富勒仓储管理系统 getDownloadFileAction 存在任意文件读取漏洞
- CVE-2019-19985: WordPress Plugin Email Subscribers & Newsletters 4.2.2 - Unauthenticated File Download
- huatiandongli-ntkodownload-fileread: 华天动力 ntkoDownload 任意文件读取
- huatiandongli-templateservice-fileread: 华天动力 ntkoDownload 任意文件读取
- pbootcms-database-file-download: Pbootcms Database File Download
- 泛微OA /weaver/weaver.file.FileDownloadForOutDoc SQL 注入漏洞
- POC CVE-2010-2037: Joomla! Component Percha Downloads Attach 1.1 - Directory Traversal
- POC CVE-2012-4768: WordPress Plugin Download Monitor < 3.3.5.9 - Cross-Site Scripting
- POC CVE-2015-20067: WP Attachment Export < 0.2.4 - Unrestricted File Download
- POC CVE-2015-2166: Ericsson Drutt MSDP - Local File Inclusion