CVE-2024-0305 PoC — Guangzhou Yingke Electronic Technology Ncast 信息泄露漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-0305.yaml

Associated Vulnerability

Title:Guangzhou Yingke Electronic Technology Ncast 信息泄露漏洞 (CVE-2024-0305)
Description:Guangzhou Yingke Electronic Technology Ncast是广东盈科电子（Guangzhou Yingke Electronic Technology）公司的 Guangzhou Yingke Electronic Technology Ncast 2017及之前版本存在信息泄露漏洞，该漏洞源于组件Guest Login的文件/manage/IPSetup.php在信息泄露漏洞。

Description

The Ncast Yingshi high-definition intelligent recording and playback system is a newly developed audio and video recording and playback system. The system has RCE vulnerabilities in versions 2017 and earlier.

File Snapshot


 id: CVE-2024-0305

info:
  name: Ncast busiFacade - Remote Command Execution
  author: BMCel
  sever

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!