.. / CVE-2023-39120

Exploit for Nodogsplash - Directory Traversal (CVE-2023-39120)

Description:

Nodogsplash product was affected by a directory traversal vulnerability that also impacted the OpenWrt product. This vulnerability was addressed in Nodogsplash version 5.0.1. Exploiting this vulnerability, remote attackers could read arbitrary files from the target system.

Nuclei Template

View the template here CVE-2023-39120.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-39120.yaml
Copy

References:

https://github.com/openwrt/routing/pull/997
https://github.com/nodogsplash/nodogsplash/commit/a745a5d635925d2a6f0e0530bdc0eac645b672ed
https://nvd.nist.gov/vuln/detail/CVE-2023-39120
https://gist.github.com/numanturle/55cb758bacc4930a081e79c2a6a769b6