CVE-2024-0305

Description

A vulnerability was found in Guangzhou Yingke Electronic Technology Ncast up to 2017 and classified as problematic. Affected by this issue is some unknown functionality of the file /manage/IPSetup.php of the component Guest Login. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-249872.

NVD
Severity: HIGH
CVE ID: CVE-2024-0305
CVSS Score: 7.5
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

VulDB
Severity: MEDIUM
CVE ID: CVE-2024-0305
CVSS Score: 5.3
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Refrence: NVD MITRE

Proof Of Concept

Nuclei Templates for CVE-2024-0305

Refrence: Project Discovery GitHub

jidle123

cve-2024-0305可用的exp

Refrence: GitHub

Description​

Proof Of Concept​

Description

Proof Of Concept