CVE-2018-12031 PoC — Eaton Intelligent Power Manager 安全漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2018/CVE-2018-12031.yaml

Associated Vulnerability

Title:Eaton Intelligent Power Manager 安全漏洞 (CVE-2018-12031)
Description:Eaton Intelligent Power Manager是美国Eaton公司的一款用于监控和管理屋里或虚拟环境电源的工具。 Eaton Intelligent Power Manager 1.6版本中存在安全漏洞。攻击者可借助'firmware'参数利用该漏洞包含文件。

Description

Eaton Intelligent Power Manager v1.6 allows an attacker to include a file via directory traversal, which can lead to sensitive information disclosure, denial of service and code execution.

File Snapshot


 id: CVE-2018-12031

info:
  name: Eaton Intelligent Power Manager 1.6 - Directory Traversal
  author

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!