CVEs-PoC/2020/CVE-2020-11681.md at ae7c8ffaeab2dbdfe8daabfe5c8c852b33cc867f

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-13 18:22:07 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Castel NextGen DVR v1.0.0 stores and displays credentials for the associated SMTP server in cleartext. Low privileged users can exploit this to create an administrator user and obtain the SMTP credentials.

POC

Reference

http://packetstormsecurity.com/files/157954/Castel-NextGen-DVR-1.0.0-Bypass-CSRF-Disclosure.html

Github

https://github.com/irbishop/CVEs

724 B Raw Blame History

CVE-2020-11681

Description

POC

Reference

Github

724 B

Raw Blame History