Free Trial
Under attack ?

PRTG-Network-Monitor-Information-Disclosure

Overview :
PRTG Network Monitor before 20.1.57.1745 allows remote unauthenticated attackers to obtain information about probes running or the server itself (CPU usage, memory, Windows version, and internal statistics) via an HTTP request, as demonstrated by type=probes to login.htm or index.htm.

CVE-2020-11547

PRTG-Network-Monitor-Information-Disclosure

Remote unauthenticated user can craft an HTTP request in /public/login.htm or /index.htm by providing the ‘type’ parameter.

Example: http://127.0.0.1/public/login.htm?type=cpuload

replace cpuload by any of the following to get diferent info

  • version
  • cpuload
  • dnsname
  • serverhttpurl
  • windowsversion
  • systemid
  • treestat
  • memory
  • requests
  • screenshot
  • lastsync
  • probes
  • warnings

Facebook
Twitter
LinkedIn
Linkedin X-twitter Facebook-f Youtube

Recent Blog Posts

Best End-to-End Encryption Tools for 2025
Top 6 WAF Alternatives for Cloud-Native Apps
Top F5 WAF Alternatives for 2025
Top 10 Bot Mitigation Tools for 2025
Top 5 WAAP Platforms Compared (2025 Guide)

WAF Solution

Recent Case Studies

Government Institution Fortifies Data Defenses with Prophaze

Government Institution Fortifies Data Defenses with Prophaze

December 14, 2023
Prophaze's WAF Redefines Aerospace Security Standards

Prophaze’s WAF Redefines Aerospace Security Standards

December 14, 2023
Industrial IoT Breach mitigated by Prophaze

Industrial IoT Breach Mitigated by Prophaze

December 14, 2023

Recent Press Releases

Indo Pak Cyber Attacks

India Cyber Attack: 85 Million Malicious Requests Blocked by Prophaze

May 20, 2025
Prophaze Named in Gartner’s 2025 WAAP Market Guide

Prophaze Named in Gartner’s 2025 WAAP Market Guide

April 22, 2025
Intel Prophaze Partnership

Intel’s 4th Gen Processors Power Prophaze’s New Era of Smarter, Faster Security

January 23, 2025