Full title: Dahua DVR 2.608.0000.0 and 2.608.GV00.0 - Authentication Bypass 
Category: web applications
Platform: php
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

# 0day.today @ http://0day.today/