Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-25078 PoC — D-Link DCS-2530L和DCS-2670L 安全漏洞

Source
https://github.com/MzzdToT/CVE-2020-25078
Associated Vulnerability
Title:D-Link DCS-2530L和DCS-2670L 安全漏洞 (CVE-2020-25078)
Description:An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure.
Description
D-Link DCS系列账号密码信息泄露漏洞,通过脚本获取账号密码,可批量。
Readme
# D-Link DCS系列账号密码信息泄露漏洞
D-Link DCS系列账号密码信息泄露漏洞,通过脚本获取账号密码登录。

## 漏洞编号

CVE-2020-25078

## 工具利用

python3 CVE-2020-25078.py -u http://127.0.0.1:1111 单个url测试

python3 CVE-2020-25078.py -f url.txt 批量检测

![](./exp.png)

## 免责声明

由于传播、利用此文所提供的信息而造成的任何直接或者间接的后果及损失,均由使用者本人负责,作者不为此承担任何责任。
File Snapshot

 [4.0K]  /data/pocs/ebf821354bb86093442ddb0750027eafd6e8c5cc
├── [2.8K]  CVE-2020-25078.py
├── [ 72K]  exp.png
└── [ 510]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →