id: pcoweb-default-login
info:
name: pCOWeb - Default-Login
author: ritikchaddha
severity: high
reference:
- https://docs.librenms.org/Support/Device-Notes/Carel-pCOweb-Devices/#:~:text=Accessing%20the%20pCOWeb%20card,-Log%20on%20to&text=The%20default%20username%20and%20password%20is%20admin%2Ffadmin%20.
metadata:
verified: true
max-request: 1
shodan-query: title:"pCOWeb"
tags: pcoweb,default-login,misconfig,vuln
variables:
username: "admin"
password: "fadmin"
http:
- raw:
- |
GET /config/pw_left_bar.html HTTP/1.1
Host: {{Hostname}}
Authorization: Basic {{base64(username + ':' + password)}}
host-redirects: true
max-redirects: 2
matchers-condition: and
matchers:
- type: word
part: response
words:
- "System is using"
- "pCOWeb"
- "Configuration"
condition: and
- type: status
status:
- 200
# digest: 4a0a004730450221009a56af843261556106123391af1559166bb76a51baae05635bda89f3631969b302203d1acd035c8b1a31251d2594a810c7b18de187327685c33ea26c621e6f570dbe:922c64590222798bb761d5b6d8e72950