漏洞描述
Schneider Electric C-Bus Toolkit中存在目录遍历漏洞。此漏洞是由于C-Gate2服务中对FILE 上传、下载指令的参数验证不充分所导致的。
Schneider Electric C-Bus Toolkit CVE-2023-5399 目录遍历漏洞
PoC代码
暂无相关漏洞推荐
- 安科瑞-GetElectricalYYByHour-SQL注入
- POC CVE-2018-7841: Schneider Electric U.motion Builder - Remote Code Execution
- POC CVE-2023-34020: Uncanny Toolkit for LearnDash - Open Redirection
- POC CVE-2017-9965: Schneider Electric Pelco VideoXpert Enterprise 2.0 - Path Traversal
- POC apc-nmc-default-login: Schneider Electric APC NMC - Default Login
- POC perfsonar-toolkit: perfSONAR Toolkit - Exposure
- WordPress plugin ID-SK Toolkit 跨站脚本漏洞
- SAML-Toolkits ruby-saml 签名验证不当漏洞
- Mitsubishi Electric smartRTU / INEA ME-RTU 命令注入漏洞
- Mitsubishi Electric smartRTU / INEA ME-RTU 命令注入漏洞
- Schneider Electric IIoT Monitor Zip目录遍历漏洞
- Schneider Electric SpaceLogic AS-P 日志信息泄露漏洞
- Schneider Electric C-Bus Toolkit CVE-2021-22784 认证绕过漏洞