Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-19326 PoC — Zyxel VMG1312-B10D 路径遍历漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2018/CVE-2018-19326.yaml
Associated Vulnerability
Title:Zyxel VMG1312-B10D 路径遍历漏洞 (CVE-2018-19326)
Description:Zyxel VMG1312-B10D是合勤(ZyXEL)科技公司的一款无线网关设备。 Zyxel VMG1312-B10D 5.13(AAXA.8)C0之前版本中存在目录遍历漏洞。攻击者可借助‘../’目录遍历序列利用该漏洞访问任意文件。
Description
Zyxel VMG1312-B10D 5.13AAXA.8 is susceptible to local file inclusion. A remote unauthenticated attacker can send a specially crafted URL request containing "dot dot" sequences (/../), conduct directory traversal attacks, and view arbitrary files.
File Snapshot

 id: CVE-2018-19326

info:
  name: Zyxel VMG1312-B10D 5.13AAXA.8 - Local File Inclusion
  author: 0x_

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.