Open sangamcs opened 3 years ago
Thanks your feedback! poc1 = '/tmui/login.jsp/..;/tmui/system/user/authproperties.jsp' if you can access the authproperties.jsp page, that means could be vulnerable(possible, not 100%). So you can try it manually, or improve the code(such as improve this [if] statement) so that make it nearly 100% accurate.
because many of BigIP server having webpages.