漏洞描述
Network Technologies IncENVIROMUX存在默认口令,攻击者通过接口登录获得sessionId后,将sessionId设置到浏览器cookie中,刷新首页可以直接登录成功。
Network Technologies Inc ENVIROMUX存在默认口令
PoC代码
暂无相关漏洞推荐
- (CVE-2025-4617)Palo Alto Networks Prisma Browser截图控制绕过漏洞
- (CVE-2025-4618)Palo Alto Networks Prisma Browser敏感信息泄露漏洞
- CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- POC CVE-2017-15944: Palo Alto Network PAN-OS - Remote Code Execution
- POC CVE-2017-4011: McAfee Network Data Loss Prevention 9.3.x - Cross-Site Scripting
- POC CVE-2018-10141: Palo Alto Networks PAN-OS GlobalProtect <8.1.4 - Cross-Site Scripting
- POC CVE-2018-19410: PRTG Network Monitor - Local File Inclusion
- POC CVE-2019-1821: Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager - Remote Code Execution
- POC CVE-2020-11547: PRTG Network Monitor <20.1.57.1745 - Information Disclosure
- POC CVE-2020-2036: Palo Alto Networks PAN-OS Web Interface - Cross Site-Scripting
- POC CVE-2020-8654: EyesOfNetwork 5.1-5.3 - SQL Injection/Remote Code Execution
- POC CVE-2021-30049: SysAid Technologies 20.3.64 b14 - Cross-Site Scripting
- POC CVE-2021-45043: HD-Network Realtime Monitoring System 2.0 - Local File Inclusion