.. / CVE-2022-26233

Exploit for Barco Control Room Management Suite <=2.9 Build 0275 - Local File Inclusion (CVE-2022-26233)

Description:

Barco Control Room Management through Suite 2.9 Build 0275 is vulnerable to local file inclusion that could allow attackers to access sensitive information and components. Requests must begin with the “GET /....” substring.

Nuclei Template

View the template here CVE-2022-26233.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-26233.yaml

References:

https://0day.today/exploit/37579
http://packetstormsecurity.com/files/166577/Barco-Control-Room-Management-Suite-Directory-Traversal.html
https://github.com/ARPSyndicate/cvemon
https://nvd.nist.gov/vuln/detail/CVE-2022-26233
http://seclists.org/fulldisclosure/2022/Apr/0

.. / CVE-2022-26233 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Barco Control Room Management Suite <=2.9 Build 0275 - Local File Inclusion (CVE-2022-26233)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2022-26233