漏洞描述
WebUI的"main.php"端点包含一个漏洞,使得远程攻击者能够通过“Logon”参数使其执行任意代码。
WebUI 1.5b6 RCE
PoC代码
暂无相关漏洞推荐
- POC CVE-2024-37656: GnuBoard5 5.5.16 - Open Redirect
- (CVE-2025-4617)Palo Alto Networks Prisma Browser截图控制绕过漏洞
- (CVE-2025-4618)Palo Alto Networks Prisma Browser敏感信息泄露漏洞
- POC CVE-2021-4374: WordPress Automatic Plugin - Unauthenticated Options Change
- POC CVE-2025-11749: WordPress AI Engine Plugin - Token Exposure
- POC CVE-2025-51991: XWiki <= 17.3.0 - Server-Side Template Injection (SSTI)
- Windows PolicyConfiguration 计划任务特权提升漏洞(CVE-2025-60710)
- DbGate /runners/load-reader 文件读取漏洞(CVE-2025-50185)
- DbGate /uploads/get 目录遍历漏洞(CVE-2025-50184)
- EzGED3 /data/showparaphdocs.php 目录遍历漏洞(CVE-2025-51539)
- MapTiler-Tileserver-php /tileserver.php/x/1/1/1 目录遍历漏洞(CVE-2025-44137)
- 博斯外贸管理软件 2011DCdraft.jsp SQL注入漏洞
- POC CVE-2023-39121: Emlog 2.1.9 - SQL Injection