Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-28955 PoC — D-Link DIR816 授权问题漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2022/CVE-2022-28955.yaml
Associated Vulnerability
Title:D-Link DIR816 授权问题漏洞 (CVE-2022-28955)
Description:D-Link DIR816是中国台湾友讯(D-Link)公司的一款无线路由器。 D-Link DIR816L_FW206b01存在安全漏洞,该漏洞源于访问控制存在问题。未经身份验证的攻击者利用该漏洞可以访问文件夹 folder_view.php 和 category_view.php
Description
D-Link DIR-816L_FW206b01 is susceptible to improper access control. An attacker can access folders folder_view.php and category_view.php and thereby possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
File Snapshot

 id: CVE-2022-28955

info:
  name: D-Link DIR-816L - Improper Access Control
  author: arafatansari
 

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.