An unauthorized vulnerability exists in the Smart S85F management platform
1.Vulnerability description
Beijing Baichao Network Technology Co., LTD. (hereinafter referred to as Baichao Network) is a high-tech enterprise committed to building the next generation of secure Internet.
An unauthorized vulnerability exists in the database management of the Smart S85F management platform. Attackers can use the vulnerability to gain server permissions or affect services in the system.
2.Vulnerability url:/sysmanage/licence.php
3.Vulnerability recurrence
Search in fofa: app="Smart Management Platform "&&body ="S85F"
See the login page.
Construct the url: https://ip:port/sysmanage/licence.php, unauthorized access, success can be unauthorized operation
