Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-24285 PoC — Intelbras TIP 200 信息泄露漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2020/CVE-2020-24285.yaml
Associated Vulnerability
Title:Intelbras TIP 200 信息泄露漏洞 (CVE-2020-24285)
Description:Intelbras TIP 200是巴西Intelbras公司的一款IP电话产品。该设备是一个IP终端,最多支持两个SIP账户,拥有高语音质量(HD Voice)、LCD(2x15)、电源PoE(以太网供电)等功能。 INTELBRAS TELEFONE IP TIP200 60.61.75.22版本存在信息泄露漏洞,该漏洞允许攻击者通过cgi-bin cgierver .exx获取敏感信息。
Description
INTELBRAS TELEFONE IP TIP200 version 60.61.75.22 is vulnerable to information disclosure, allowing unauthenticated attackers to access sensitive device information and configuration data via a direct request to the /cgi-bin/export_settings.sh endpoint.
File Snapshot

 id: CVE-2020-24285

info:
  name: INTELBRAS TELEFONE IP TIP200 60.61.75.22 - Local File Inclusion
  

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.