漏洞描述
Ruckus Wireless Admin面板版本<=10.4中存在RCE/CSRF漏洞(CVE-2023-25717),可以通过向易受攻击的设备发送未经身份验证的HTTP GET请求来执行代码
Ruckus Wireless Admin doLogin 存在命令执行漏洞(CVE-2023-25717)
PoC代码
暂无相关漏洞推荐
- POC CVE-2023-27624: WordPress Redirect After Login <= 0.1.9 - Admin Stored XSS
- POC CVE-2025-52970: Fortinet FortiWeb - Authentication Bypass to Admin Privilege
- POC keycloak-admin-console-config: Keycloak Admin Console Configuration Disclosure
- POC phpmyadmin-fpd: phpMyAdmin Full Path Disclosure
- POC wp-admin-menu-editor-fpd: Admin Menu Editor - Full Path Disclosure
- POC wp-woocommerce-admin-fpd: WordPress Plugin WooCommerce Admin (woocommerce-admin) Full Path Disclosure
- PgAdmin PgAdmin4 需授权 代码注入漏洞
- POC cluster-trino-admin-login: Cluster Overview Trino - Admin Login
- Windows 11 RAiLaunchAdminProcess 管理员保护特权提升漏洞
- hue-default-credential: Cloudera Hue Default Admin Login
- (CVE-2025-8765)Datacom DM955 5GT 1200 825.8010.00设备Wireless Basic Settings组件SSID参数跨站脚本漏洞
- POC CVE-2005-3344: Horde Groupware Unauthenticated Admin Access
- POC CVE-2007-5728: phpPgAdmin <=4.1.1 - Cross-Site Scripting