.. / CVE-2016-5674

Exploit for NUUO NVR camera `debugging_center_utils_.php` - Command Execution (CVE-2016-5674)

Description:

debugging_center_utils_.php in NUUO NVRmini 2 1.7.5 through 3.0.0, NUUO NVRsolo 1.7.5 through 3.0.0, and NETGEAR ReadyNAS Surveillance 1.1.1 through 1.4.1 allows remote attackers to execute arbitrary PHP code via the log parameter.

Nuclei Template

View the template here CVE-2016-5674.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2016/CVE-2016-5674.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2016-5674
http://www.kb.cert.org/vuls/id/856152
https://www.exploit-db.com/exploits/40200/

.. / CVE-2016-5674 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for NUUO NVR camera `debugging_center_utils_.php` - Command Execution (CVE-2016-5674)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2016-5674