漏洞描述
Netgear ProSAFE NMS存在任意文件上传漏洞,该漏洞是由于MfileUpload.do接口对用户的请求检验不当造成的。
Netgear ProSAFE NMS CVE-2023-38095 任意文件上传漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2020-26919: NETGEAR ProSAFE Plus - Unauthenticated Remote Code Execution
- POC CVE-2021-20167: Netgear RAX43 1.0.3.96 - Command Injection/Authentication Bypass Buffer Overrun
- POC CVE-2024-30568: Netgear R6850 V1.1.0.88 - Command Injection
- POC CVE-2024-30569: Netgear R6850 - Information Disclosure
- POC CVE-2024-30570: Netgear R6850 - Information Disclosure
- POC CVE-2024-57046: Netgear DGN2200 - Improper Authentication
- POC CVE-2024-6646: Netgear-WN604 downloadFile.php - Information Disclosure
- POC netgear-boarddataww-rce: Netgear Devices boardDataWW.php - Remote Command Execution
- POC dlink-netgear-xss: Dlink DSR-250 and Netgear Prosafe - Cross-Site Scripting
- POC netgear-dgn-rce: Netgear DGN Devices - Command Execution
- POC netgear-wnr614-auth-bypass: Netgear WNR614 - Improper Authentication
- Netgear 路由器多版本管理后台 downloadFile.php 信息泄露漏洞(CVE-2024-6646)
- Netgear-WN604 downloadFile.php 信息泄露漏洞