daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

minor updates

patch-1
sandeep 2021-07-10 18:45:09 +05:30
parent 3bf1c929ed
commit 767f173f88
3 changed files with 7 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
cves/2021/CVE-2021-28149.yaml
View File

@ -7,7 +7,7 @@ info:
description: |
Hongdian H8922 3.0.5 devices allow Directory Traversal. The /log_download.cgi log export handler does not validate user input and allows a remote attacker with minimal privileges to download any file from the device by substituting ../ (e.g., ../../etc/passwd) This can be carried out with a web browser by changing the file name accordingly. Upon visiting log_download.cgi?type=../../etc/passwd and logging in, the web server will allow a download of the contents of the /etc/passwd file.
reference: |
- https://ssd-disclosure.com/ssd-advisory-hongdian-h8922-multiple-vulnerabilities/
- https://ssd-disclosure.com/ssd-advisory-hongdian-h8922-multiple-vulnerabilities/
- https://nvd.nist.gov/vuln/detail/CVE-2021-28149
tags: cve,cve2021,hongdian,traversal

6
cves/2021/CVE-2021-28150.yaml
View File

@ -7,7 +7,7 @@ info:
description: |
Hongdian H8922 3.0.5 devices allow the unprivileged guest user to read cli.conf (with the administrator password and other sensitive data) via /backup2.cgi.
reference: |
- https://ssd-disclosure.com/ssd-advisory-hongdian-h8922-multiple-vulnerabilities/
- https://ssd-disclosure.com/ssd-advisory-hongdian-h8922-multiple-vulnerabilities/
- https://nvd.nist.gov/vuln/detail/CVE-2021-28150
tags: cve,cve2021,hongdian,exposures
@ -51,5 +51,5 @@ requests:
- type: word
words:
- "CLI configuration saved from vty"
- "service webadmin"
part: body
- "service webadmin"
part: body

5
cves/2021/CVE-2021-28151.yaml
View File

@ -7,7 +7,7 @@ info:
description: |
Hongdian H8922 3.0.5 devices allow OS command injection via shell metacharacters into the ip-address (aka Destination) field to the tools.cgi ping command, which is accessible with the username guest and password guest.
reference: |
- https://ssd-disclosure.com/ssd-advisory-hongdian-h8922-multiple-vulnerabilities/
- https://ssd-disclosure.com/ssd-advisory-hongdian-h8922-multiple-vulnerabilities/
- https://nvd.nist.gov/vuln/detail/CVE-2021-28151
tags: cve,cve2021,hongdian,rce
@ -63,5 +63,6 @@ requests:
- type: word
words:
- "uid="
- "gid="
- "gid="
part: body
condition: and