Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-16706 PoC — LG SuperSign CMS 输入验证错误漏洞

Source
https://github.com/Nurdilin/CVE-2018-16706
Associated Vulnerability
Title:LG SuperSign CMS 输入验证错误漏洞 (CVE-2018-16706)
Description:LG SuperSign CMS allows TVs to be rebooted remotely without authentication via a direct HTTP request to /qsr_server/device/reboot on port 9080.
Description
Or how I turn off my TV via a cronjob
Readme
# CVE-2018-16706
Or how I turn off my TV 



$ nmap 192.168.1.55 -p 9080

PORT     STATE SERVICE
9080/tcp open  glrpc

Nmap done: 1 IP address (1 host up) scanned in 0.05 seconds


CVE Details
https://www.cvedetails.com/cve/CVE-2018-16706/
File Snapshot

 [4.0K]  /data/pocs/cff72bdff63b7294e48b35fc591961d72b84a846
├── [ 240]  README.md
└── [ 237]  reboot_tv.py

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →