CVE-2023-24796 Information

Description

Password vulnerability found in Vinga WR-AC1200 81.102.1.4370 and before allows a remote attacker to execute arbitrary code via the password parameter at the /goform/sysTools and /adm/systools.asp endpoints.

Reference

https://gist.github.com/yinfei6/3664387cb5b66b68c7eff4bfdb51b2d6