CVE-2023-33617

This repository contains a Python-based exploit for CVE-2023-33617, an authenticated OS command injection vulnerability in Parks FiberLink 210 routers running firmware version V2.1.14_X000. The tool uses Shodan and ZoomEye APIs to discover vulnerable targets and exploits the vulnerability via the `/boaform/admin/formPing` endpoint.

This repository contains a Python-based exploit for CVE-2023-33617, an authenticated OS command injection vulnerability in Parks FiberLink 210 routers running firmware version V2.1.14_X000. The tool uses Shodan and ZoomEye APIs to discover vulnerable targets and exploits the vulnerability by injecting commands via the router's ping functionality.

This repository contains a functional exploit for CVE-2023-33617, an authenticated OS command injection vulnerability in Parks FiberLink 210 routers. The exploit leverages Shodan/ZoomEye APIs to discover vulnerable targets and executes arbitrary commands via crafted HTTP requests to the router's admin interface.