CVE-2018-7467 PoC — AxxonSoft Axxon Next 路径遍历漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2018/CVE-2018-7467.yaml

Associated Vulnerability

Title:AxxonSoft Axxon Next 路径遍历漏洞 (CVE-2018-7467)
Description:AxxonSoft Axxon Next是美国AxxonSoft公司的一套开放式监控视频管理平台。 AxxonSoft Axxon Next中存在目录遍历漏洞。攻击者可借助开头为/css//..%2f子字符串的URI利用该漏洞获取信息。

Description

AxxonSoft Axxon Next suffers from a local file inclusion vulnerability.

File Snapshot


 id: CVE-2018-7467

info:
  name: AxxonSoft Axxon Next - Local File Inclusion
  author: 0x_Akoko
  se

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!