CVE-2020-27368
TOTOLINK-A702R-V1.0.0-B20161227.1023 Directory Indexing Vulnerability
Description
Directory Indexing in Login Portal of Login Portal of TOTOLINK-A702R-V1.0.0-B20161227.1023 allows attacker to access /icons/ directories via GET Parameter.
Additional Information
Remediation disabling directory listing for web server.
VulnerabilityType
Directory Indexing
Vendor of Product
TOTOLINK
Affected Product Code Base
TOTOLINK-A702R-V1.0.0-B20161227.1023 - Model No. A702R (Firmware V1.0.0)
Affected Component
Login Portal of TOTOLINK-A702R-V1.0.0-B20161227.1023.
Attack Type
Local
Impact Information Disclosure
true
Discoverer
Jiraput Thamsongkrah
