CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-30 13:19:29 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
dc6e2cf7158eeb24cfecb4d64f4f1da9a8a732e2
CVEs-PoC/2020/CVE-2020-8515.md
T
marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024
2024-05-25 21:48:12 +02:00

55 lines
2.5 KiB
Markdown
Raw Blame History

### [CVE-2020-8515](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8515)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
### Description
DrayTek Vigor2960 1.3.1_Beta, Vigor3900 1.4.4_Beta, and Vigor300B 1.3.3_Beta, 1.4.2.1_Beta, and 1.4.4_Beta devices allow remote code execution as root (without authentication) via shell metacharacters to the cgi-bin/mainfunction.cgi URI. This issue has been fixed in Vigor3900/2960/300B v1.5.1.
### POC
#### Reference
- http://packetstormsecurity.com/files/156979/DrayTek-Vigor2960-Vigor3900-Vigor300B-Remote-Command-Execution.html
- https://sku11army.blogspot.com/2020/01/draytek-unauthenticated-rce-in-draytek.html
#### Github
- https://github.com/0day404/vulnerability-poc
- https://github.com/0xT11/CVE-POC
- https://github.com/20142995/Goby
- https://github.com/20142995/pocsuite
- https://github.com/20142995/pocsuite3
- https://github.com/3gstudent/Homework-of-Python
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/ArrestX/--POC
- https://github.com/Elsfa7-110/kenzer-templates
- https://github.com/HimmelAward/Goby_POC
- https://github.com/KayCHENvip/vulnerability-poc
- https://github.com/Miraitowa70/POC-Notes
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/SexyBeast233/SecBooks
- https://github.com/Threekiii/Awesome-POC
- https://github.com/Z0fhack/Goby_POC
- https://github.com/bigblackhat/oFx
- https://github.com/d4n-sec/d4n-sec.github.io
- https://github.com/darrenmartyn/CVE-2020-8515
- https://github.com/developer3000S/PoC-in-GitHub
- https://github.com/f0cus77/awesome-iot-security-resource
- https://github.com/f1tao/awesome-iot-security-resource
- https://github.com/hectorgie/PoC-in-GitHub
- https://github.com/imjdl/CVE-2020-8515-PoC
- https://github.com/k8gege/Ladon
- https://github.com/merlinepedra/nuclei-templates
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/openx-org/BLEN
- https://github.com/sobinge/nuclei-templates
- https://github.com/soosmile/POC
- https://github.com/sponkmonk/Ladon_english_update
- https://github.com/trhacknon/CVE-2020-8515
- https://github.com/trhacknon/CVE-2020-8515-PoC
- https://github.com/trhacknon/nmap_draytek_rce
- https://github.com/truerandom/nmap_draytek_rce
Reference in New Issue View Git Blame Copy Permalink