daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update and rename commax-biometric-access-control-system-auth-bypass.yaml to commax-biometric-auth-bypass.yaml

patch-1
Prince Chaddha 2021-08-24 17:17:43 +05:30 committed by GitHub
parent 0a4cd456bf
commit 554c4a505f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
vulnerabilities/other/commax-biometric-access-control-system-auth-bypass.yaml → vulnerabilities/other/commax-biometric-auth-bypass.yaml
View File

@ -1,4 +1,4 @@
id: commax-biometric-access-control-system-auth-bypass id: commax-biometric-auth-bypass
info: info:
name: COMMAX Biometric Access Control System 1.0.0 - Authentication Bypass name: COMMAX Biometric Access Control System 1.0.0 - Authentication Bypass
@ -6,6 +6,7 @@ info:
severity: critical severity: critical
description: The application suffers from an authentication bypass vulnerability. An unauthenticated attacker through cookie poisoning can bypass authentication and disclose sensitive information and circumvent physical controls in smart homes and buildings. description: The application suffers from an authentication bypass vulnerability. An unauthenticated attacker through cookie poisoning can bypass authentication and disclose sensitive information and circumvent physical controls in smart homes and buildings.
reference: reference:
- https://www.exploit-db.com/exploits/50206
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5661.php - https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5661.php
tags: commax,auth-bypass tags: commax,auth-bypass
@ -27,8 +28,6 @@ requests:
- type: word - type: word
words: words:
- "<title>::: COMMAX :::</title>" - "<title>::: COMMAX :::</title>"
- "COMMAX"
condition: or
- type: word - type: word
part: header part: header