Skip to content

Instantly share code, notes, and snippets.

@yinfei6
Last active April 23, 2023 09:02
Embed
What would you like to do?
[CVE ID]
CVE-2023-24796
[PRODUCT]
WR-AC1200
[VERSION]
<=81.102.1.4370
[PROBLEM TYPE]
code execution
[DESCRIPTION]
Password vulnerability found in Vinga WR-AC1200 81.102.1.4370 and before allows a remote attacker to execute arbitrary code via the password parameter at the /goform/sysTools and /adm/systools.asp endpoints.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment