Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-9965 PoC — Schneider Electric Pelco VideoXpert Enterprise 路径遍历漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2017/CVE-2017-9965.yaml
Associated Vulnerability
Title:Schneider Electric Pelco VideoXpert Enterprise 路径遍历漏洞 (CVE-2017-9965)
Description:Schneider Electric Pelco VideoXpert Enterprise是法国施耐德电气(Schneider Electric)公司的一套企业视频管理系统。 Schneider Electric Pelco VideoXpert Enterprise 2.1之前的版本中存在目录遍历漏洞。攻击者可利用该漏洞查看Web服务器文件。
Description
Schneider Electric Pelco VideoXpert Enterprise versions 2.0 and prior contain a directory traversal caused by insufficient input validation, letting unauthorized persons view web server files, exploit requires no authentication.
File Snapshot

 id: CVE-2017-9965

info:
  name: Schneider Electric Pelco VideoXpert Enterprise 2.0 - Path Traversal

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.