CVE-2018-11094
CVE-2018-11094 — Intelbras NCLOUD 300 1.0 Authentication bypass . Public sources describe endpoints that do not require authentication: /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings. An HTTP POST to /cgi-bin/ExportSettings.sh can disclose the we...