漏洞描述
NUUO Network Video Recorder(NVR)是中国台湾NUUO公司的一款网络视频记录器。 使用1.7.x版本至3.3.x版本固件的NUUO NVR中存在安全漏洞。攻击者可通过向handle_load_config.php文件发送shell元字符利用该漏洞执行任意命令。
NUUO Network Video Recorder 命令注入漏洞
PoC代码
暂无相关漏洞推荐
- (CVE-2025-4617)Palo Alto Networks Prisma Browser截图控制绕过漏洞
- (CVE-2025-4618)Palo Alto Networks Prisma Browser敏感信息泄露漏洞
- CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- Network Technologies Inc ENVIROMUX存在默认口令
- POC CVE-2010-0696: Joomla! Component Jw_allVideos - Arbitrary File Retrieval
- POC CVE-2014-9094: WordPress DZS-VideoGallery Plugin Cross-Site Scripting
- POC CVE-2016-1000134: WordPress HDW Video Gallery <=1.2 - Cross-Site Scripting
- POC CVE-2016-1000135: WordPress HDW Video Gallery <=1.2 - Cross-Site Scripting
- POC CVE-2016-1000148: WordPress S3 Video <=0.983 - Cross-Site Scripting
- POC CVE-2017-15944: Palo Alto Network PAN-OS - Remote Code Execution
- POC CVE-2017-4011: McAfee Network Data Loss Prevention 9.3.x - Cross-Site Scripting
- POC CVE-2018-10141: Palo Alto Networks PAN-OS GlobalProtect <8.1.4 - Cross-Site Scripting
- POC CVE-2018-19410: PRTG Network Monitor - Local File Inclusion