canon-c3325-unauth: Canon R-ADV C3325 - Unauth

漏洞描述

Canon R-ADV C3325 unauthenticated dashboard has been exposed.

PoC代码[已公开]

id: canon-c3325-unauth

info:
  name: Canon R-ADV C3325 - Unauth
  author: ritikchaddha
  severity: high
  description: |
    Canon R-ADV C3325 unauthenticated dashboard has been exposed.
  metadata:
    verified: true
    max-request: 1
    shodan-query: title:"c3325"
  tags: canon,c3325,unauth,exposure,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "writeln('Log Out"
          - "Remote UI : Portal"
        condition: and

      - type: status
        status:
          - 200
# digest: 490a0046304402200d03d43554f0b24c1d7cb71f42474e7f0dc110db31c1826f5b2d277be8795a75022079363bb1b41b2d71d4da8033443ac067fad9a195927a45102022edf545dc565b:922c64590222798bb761d5b6d8e72950

来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/misconfiguration/canon-c3325-unauth.yaml

漏洞描述

PoC代码[已公开]

相关漏洞推荐