CVE-2019-19356 PoC — Netis WF2419 操作系统命令注入漏洞

Source

https://github.com/qq1515406085/CVE-2019-19356

Associated Vulnerability

Title:Netis WF2419 操作系统命令注入漏洞 (CVE-2019-19356)
Description:Netis WF2780是中国Netis公司的一个网络设备。提供AC路由器以千兆速度提供下一代Wi-Fi。 Netis WF2780 存在操作系统命令注入漏洞。该漏洞源于外部输入数据构造操作系统可执行命令过程中，网络系统或产品未正确过滤其中的特殊字符、命令等。攻击者可利用该漏洞执行非法操作系统命令。

Readme

# CVE-2019-19356
# cd CVE-2019-19356
# docker-compose up -d

File Snapshot


 [4.0K]  /data/pocs/c27bb75c9ec04e76bbfb4cfc0a40be711fe375fd
├── [ 326]  docker-compose.yml
└── [  60]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!