daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

reference added

patch-1
Dhiyaneshwaran 2023-08-22 14:54:24 +05:30 committed by GitHub
parent ca2ab498e1
commit fca9293d1f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
http/vulnerabilities/other/hikvision-isecure-center-rce.yaml
View File

@ -3,11 +3,12 @@ id: hikvision-isecure-center-rce
info:
name: HIKVISION iSecure Center - Remote Code Execution
author: SleepingBag945
severity: high
severity: critical
description: |
Hikvision's comprehensive security management platform has a Fastjson remote command execution vulnerability, which can execute system commands and obtain system permissions and sensitive data information of the target server.
reference:
- https://zhuanlan.zhihu.com/p/647590787
- https://github.com/PeiQi0/PeiQi-WIKI-Book/blob/main/docs/wiki/iot/HIKVISION/HIKVISION%20%E7%BB%BC%E5%90%88%E5%AE%89%E9%98%B2%E7%AE%A1%E7%90%86%E5%B9%B3%E5%8F%B0%20applyCT%20Fastjson%E8%BF%9C%E7%A8%8B%E5%91%BD%E4%BB%A4%E6%89%A7%E8%A1%8C%E6%BC%8F%E6%B4%9E.md
metadata:
max-request: 1
verified: true