Update dataiku-default-login.yaml
parent
9860b84adf
commit
171548cde1
|
@ -3,7 +3,7 @@ id: dataiku-default-login
|
||||||
info:
|
info:
|
||||||
name: Dataiku Default Login
|
name: Dataiku Default Login
|
||||||
author: random-robbie
|
author: random-robbie
|
||||||
severity: critical
|
severity: high
|
||||||
description: Dataiku default login which allows SSRF/RCE etc.
|
description: Dataiku default login which allows SSRF/RCE etc.
|
||||||
reference:
|
reference:
|
||||||
- https://www.dataiku.com
|
- https://www.dataiku.com
|
||||||
|
@ -14,14 +14,10 @@ info:
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- raw:
|
- raw:
|
||||||
- |-
|
- |
|
||||||
POST /dip/api/login HTTP/1.1
|
POST /dip/api/login HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:105.0) Gecko/20100101 Firefox/105.0
|
|
||||||
Accept: application/json, text/plain, */*
|
|
||||||
Content-Type: application/x-www-form-urlencoded;charset=utf-8
|
Content-Type: application/x-www-form-urlencoded;charset=utf-8
|
||||||
Origin: {{BaseURL}}
|
|
||||||
Referer: {{BaseURL}}/login/?redirectTo=~2F
|
|
||||||
|
|
||||||
login=admin&password=admin
|
login=admin&password=admin
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue