CVE-2020-23584 PoC — Optilink Network OP-XT71000N 命令注入漏洞

Source

https://github.com/huzaifahussain98/CVE-2020-23584

Associated Vulnerability

Title:Optilink Network OP-XT71000N 命令注入漏洞 (CVE-2020-23584)
Description:Optilink Network OP-XT71000N是印度Optilink Network公司的一款无线路由器。 Optilink Network OP-XT71000N V2.2版本存在命令注入漏洞，该漏洞源于攻击者通过带有IP-ADDRESS的任意命令，使用“|”来执行“PingTest”参数中的“/diag_tracert_admin.asp”上的命令，导致命令执行时，会发生未经验证的远程代码执行。

Description

REMOTE CODE EXECUTION

File Snapshot


 [4.0K]  /data/pocs/1ed28448a75f755e635f635e1708557df5caf7ac
└── [ 675]  readme.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!