From this webpage screenshot, the following key vulnerability information can be obtained: 1. Vulnerability Name: FBM_291W-19.09.11V.trx 2. Affected Device: FBM-291W 3. Affected Version: 19.09.11 4. Test Environment: Ubuntu 18.04 5. Official Website: https://www.wayos.com/ 6. Download Link: https://www.wayos.com/product/jiatingzuwang/jiayongwuxian/jiatingwifituijian/2355.html 7. Vulnerability Description: - FBM-291W is a multi-WAN wireless gigabit behavior management router suitable for cafes, small to medium-sized enterprises, chain organizations, and home environments. - It features 128MB RAM and 16MB flash memory. - Supports Viman’s 4th generation intelligent QoS, behavior management, smart WiFi, VPN connections, and security defense functions. - Supports intelligent wireless technology, dual-band 2.4GHz and 5GHz wireless, with wireless transmission speeds up to 1200Mbps. - The router contains a command execution vulnerability located in the function of . 8. Affected Version: FBM_291W-19.09.11V.trx 9. Exploitation Method: - Log in with default credentials , then access the page. - Craft a specially constructed parameter to execute arbitrary commands. - Example command: - Send the request via Burp Suite; the command executes successfully and downloads the file . - The file content reveals system directories, including , , , , , , , , , , , and . This information indicates that the FBM-291W router has a command execution vulnerability, allowing attackers to execute arbitrary commands by crafting specific HTTP requests.