CVE-2020-26073 PoC — Cisco?SD-WAN vManage 信息泄露漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-26073.yaml

Associated Vulnerability

Title:Cisco?SD-WAN vManage 信息泄露漏洞 (CVE-2020-26073)
Description:Cisco?SD-WAN vManage是美国思科（Cisco）公司的一款可提供软件定义网络功能的软件。该软件为网络虚拟化的一种方式。 Cisco SD-WAN vManage Software中的application data endpoints存在信息泄露漏洞，成功的利用该漏洞可使攻击者能够进行目录遍历攻击并获得对敏感信息的访问权限。

Description

Cisco SD-WAN vManage Software in the application data endpoints is vulnerable to local file inclusion which could allow an unauthenticated, remote attacker to gain access to sensitive information.

File Snapshot


 id: CVE-2020-26073

info:
  name: Cisco SD-WAN vManage Software - Local File Inclusion
  author: mad

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!