Title:Terramaster TOS 权限许可和访问控制问题漏洞 (CVE-2020-28185) Description:User Enumeration vulnerability in TerraMaster TOS <= 4.2.06 allows remote unauthenticated attackers to identify valid users within the system via the username parameter to wizard/initialise.php.
File Snapshot
# TerraMaster TOS 用户枚举漏洞 CVE-2020-28185
## 漏洞描述
TerraMaster TOS 存在用户枚举漏洞,通过wizard/initialise.php页面
...
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →