Description: A malicious actor can perform PreAuth RCE in TG8 Firewall by passing a POST request with vulnerable parameter syscmd to endpoint /admin/runphpcmd.php

Severity: Critical

Shodan/Censys Dork: TG8 Firewall

How to Run: echo "target"| httpx --silent | nuclei -t tg8-pre-auth-rce.yaml