Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-1898 PoC — Cisco RV110W、RV130W和RV215W 授权问题漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2019/CVE-2019-1898.yaml
Associated Vulnerability
Title:Cisco RV110W、RV130W和RV215W 授权问题漏洞 (CVE-2019-1898)
Description:Cisco?RV110W等都是美国思科(Cisco)公司的一款VPN防火墙路由器。 Cisco RV110W、RV130W和RV215W中基于Web的管理界面存在授权问题漏洞。远程攻击者可利用该漏洞访问syslog文件中的信息。
Description
A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to access the syslog file on an affected device. The vulnerability is due to improper authorization of an HTTP request. An attacker could exploit this vulnerability by accessing the URL for the syslog file. A successful exploit could allow the attacker to access the information contained in the file.
File Snapshot

 id: CVE-2019-1898

info:
  name: Cisco RV110W RV130W RV215W Router - Information leakage
  author: S

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.