Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-34576 PoC — WAVLINK WN535 G3 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-34576.yaml
Associated Vulnerability
Title:WAVLINK WN535 G3 安全漏洞 (CVE-2022-34576)
Description:WAVLINK WN535 G3是中国睿因科技(WAVLINK)公司的一个无线路由器。 WAVLINK WN535 G3 M35G3R.V5030.180927版本存在安全漏洞。攻击者利用该漏洞通过特制的POST请求执行任意代码。
Description
WAVLINK WN535 G3 M35G3R.V5030.180927 is susceptible to improper access control. A vulnerability in /cgi-bin/ExportAllSettings.sh allows an attacker to execute arbitrary code via a crafted POST request and thereby possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
File Snapshot

 id: CVE-2022-34576

info:
  name: WAVLINK WN535 G3 - Improper Access Control
  author: arafatansari


...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.