netdisco-unauth: Netdisco - Unauth Access

漏洞描述

PoC代码[已公开]

id: netdisco-unauth

info:
  name: Netdisco - Unauth Access
  author: ritikchaddha
  severity: critical
  description: |
    Detects an unauth dashboard access of Netdisco.
  impact: |
    Attackers can potentially exploit this vulnerability to gain unauthorized access to sensitive information.
  metadata:
    verified: true
    max-request: 1
    shodan-query: title:"Netdisco"
    fofa-query: title="Netdisco"
  tags: netdisco,misconfig,unauth,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/inventory"

    host-redirects: true
    max-redirects: 2
    matchers:
      - type: dsl
        dsl:
          - contains_all(body, "User Management", "/admin/discoverall", "Logged in as")
          - status_code == 200
        condition: and
# digest: 4a0a0047304502206b92465851ca03a61244bf7cd6bd3066e58c547c8425d1661826febc1ddbb53b0221009d2ef0f96c1409aff0530159e64b317552fcbc4e74477bbf706c604552d9a594:922c64590222798bb761d5b6d8e72950

相关漏洞推荐

• POC openvpn-as-config-exposure: OpenVPN Access Server - Configuration Exposure
• POC cacti-guest-access-enabled: Cacti - Guest User Access Enabled
• POC CVE-2021-21246: OneDev < 4.0.3 - User Access Token Leak
• POC CVE-2022-0188: CMP WordPress < 4.0.19 - Broken Access Control
• POC CVE-2022-4223: pgAdmin < 6.17 - Unauthenticated Remote Code Execution
• POC CVE-2025-3472: Ocean Extra <= 2.4.6 - Unauthenticated Shortcode Execution
• POC CVE-2025-55303: Astro - Unauthorized Third-Party Image Access
• POC CVE-2026-23550: Modular DS - Broken Access Control
• POC servicestack-requestlogs: ServiceStack Request Logs - Unauthenticated Access
• POC adminbro-dashboard-exposure: AdminBro Dashboard - Unauthenticated Access
• POC chroma-db-unauth: Chroma DB - Information Disclosure
• POC fortra-filecatalyst-anonymous-access: Fortra FileCatalyst - Anonymous Access
• POC CVE-2020-9039: Couchbase Server - Broken Access Control