CVEs-PoC/2019/CVE-2019-13406.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 06:55:56 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

779 B

Raw Blame History

CVE-2019-13406

Description

A broken access control vulnerability found in Advan VD-1 firmware versions up to 230. An attacker can send a POST request to cgibin/ApkUpload.cgi to install arbitrary APK without any authentication.

POC

Reference

https://gist.github.com/keniver/f5155b42eb278ec0273b83565b64235b#file-androvideo-advan-vd-1-multiple-vulnerabilities-md

Github

No PoCs found on GitHub currently.

779 B Raw Blame History

CVE-2019-13406

Description

POC

Reference

Github

779 B

Raw Blame History