Description This module exploits an unauthenticated command injection in a variety of Hikvision IP cameras (CVE-2021-36260). The module inserts a command into an XML payload used with an HTTP PUT r...
.github/workflows src .gitignore README.md go.mod go.sum Repository files navigation README hikvision_brute Brute Hikvision CAMS with CVE-2021-36260 Exploit run go run src/main.go -help to get help with running args run example go run src/main.go -infile ../CVE-NEW/hikvision...
$./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --cmd "ls -l" Execute blind command: $./CVE-2021-36260.py --rhost 192.168.57.20 --rport 8080 --cmd_blind "reboot" $./CVE-2021-36260.py -h [*] Hikvision CVE-2021-36260 [*] PoC by bashis <mcw noemail eu> (2021)...
近日,研究人员在海康威视IP摄像机/NVR设备固件中发现一个未认证的远程代码执行漏洞,漏洞CVE编号为CVE-2021-36260。漏洞影响IP摄像头和NVR设备固件,其中包括2021年6月的最新固件以及2006年发布的固件。 攻击者利用该漏洞可以用无限制的root shell来完全控制设备,即使设备的所有者受限于有限的受保护shell(psh)。除了入侵...
今天看到了海康威视又出了新漏洞——CVE-2021-36260,突然心血来潮想要复现一下,结果搜到了一个旧的漏洞——CVE-2017-7921,而且发现仍然有不少海康威视摄像头后台没有修补这个漏洞,于是就来记录一下复现过程。 #1.特定页面搜索 先搜索海康威视的摄像头后台,页面内容包含
因此,python社区最终的修复方案仅是在zipfile的文档中添加了相关的解压陷阱说明https://github.com/python/cpython/commit/3ba51d587f6897a45301ce9126300c14fcd4eba2 openEuler评分: 7.5 Vector:CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H...
name: poc-yaml-hikvision-unauthenticated-rce-cve-2021-36260 manual: true transport: http set: r1: randomLowercase(5) r2: randomLowercase(5) r3: randomLowercase(5) r4: randomLowercase(5) rules: r1: request: cache: true method: PUT
CVE: CVE-2021-36260 Reference: https://watchfulip.github.io/2021/09/18/Hikvision-IP-Camera-Unauthenticated-RCE.html All credit to Watchful_IP Note: This code will not verify if remote is Hikvision device or not. Most of my interest in this code has been concentrated on how to reliably ...
-[iOS 15.0.1 RCE PoC](https://github.com/jonathandata1/ios_15_rce) -[CVE-2021-36260:海康威视产品命令注入漏洞](https://watchfulip.github.io/2021/09/18/Hikvision-IP-Camera-Unauthenticated-RCE.html) -[CVE-2021-33044、CVE-2021-33045 大华摄像头POC](https://github.com/mcw0/DahuaConsole)...
GitHub Copilot Enterprise-grade AI features Premium Support Enterprise-grade 24/7 support Pricing Search or jump to... Search code, repositories, users, issues, pull requests... Provide feedback We read every piece of feedback, and take your input very seriously. Include my email address...