Artica Web Proxy 漏洞列表
共找到 4 个与 Artica Web Proxy 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2020-17505: Artica Web Proxy 4.30 - OS Command Injection POC
Artica Web Proxy 4.30 allows an authenticated remote attacker to inject commands via the service-cmds parameter in cyrus.php. These commands are executed with root privileges via service_cmds_peform. -
CVE-2020-17506: Artica Web Proxy 4.30 - Authentication Bypass/SQL Injection POC
Artica Web Proxy 4.30.00000000 allows remote attacker to bypass privilege detection and gain web backend administrator privileges through SQL injection of the apikey parameter in fw.login.php. -
CVE-2020-17505: Artica Web Proxy 4.30 - OS Command Injection POC
Artica Web Proxy 4.30 allows an authenticated remote attacker to inject commands via the service-cmds parameter in cyrus.php. These commands are executed with root privileges via service_cmds_peform. -
CVE-2020-17506: Artica Web Proxy 4.30 - Authentication Bypass/SQL Injection POC
Artica Web Proxy 4.30.00000000 allows remote attacker to bypass privilege detection and gain web backend administrator privileges through SQL injection of the apikey parameter in fw.login.php.