Created
May 13, 2022 03:01
-
-
Save z3r0-0t/a3bd4c0015458b018308cca3360a7e24 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| id: CVE-2022-30525-initial-detect | |
| info: | |
| name: Zyxel Unauthenticated Remote Command Injection | |
| author: z3r00t | |
| severity: info | |
| tags: CVE-2022-30525,Zyxel RCE | |
| requests: | |
| - method: GET | |
| path: | |
| - "{{BaseURL}}" | |
| matchers: | |
| - type: word | |
| part: body | |
| words: | |
| - "USG" | |
| - "USG" | |
| - "USG FLEX 100" | |
| - "USG FLEX 100w" | |
| - "USG FLEX 200" | |
| - "USG FLEX 500" | |
| - "USG FLEX 700" | |
| - "USG FLEX 50" | |
| - "USG FLEX 50w" | |
| - "ATP100" | |
| - "ATP200" | |
| - "ATP500" | |
| - "ATP700" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment