From 6126fb858ba30f24a4ab97c0003ca2cba1ff4561 Mon Sep 17 00:00:00 2001
From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
Date: Mon, 23 Sep 2024 17:03:39 +0400
Subject: [PATCH 1/2] Create tplink-wR940n-default-login.yaml

---
 .../tplink/tplink-wR940n-default-login.yaml   | 43 +++++++++++++++++++
 1 file changed, 43 insertions(+)
 create mode 100644 http/default-logins/tplink/tplink-wR940n-default-login.yaml

diff --git a/http/default-logins/tplink/tplink-wR940n-default-login.yaml b/http/default-logins/tplink/tplink-wR940n-default-login.yaml
new file mode 100644
index 0000000000..3ed3540be2
--- /dev/null
+++ b/http/default-logins/tplink/tplink-wR940n-default-login.yaml
@@ -0,0 +1,43 @@
+id: tplink-wR940n-default-login
+
+info:
+  name: TP-Link Wireless N Router WR940N - Default-Login
+  author: ritikchaddha
+  severity: high
+  metadata:
+    verified: true
+    max-request: 1
+    shodan-query: html:"/userRpm/"
+  tags: tplink,wR940n,default-login,misconfig
+
+variables:
+  username: "admin"
+  password: "admin"
+  en_pass: "{{md5(password)}}"
+  cookie: "{{base64(username + ':' + en_pass)}}"
+
+http:
+  - raw:
+      - |
+        GET /userRpm/LoginRpm.htm?Save=Save HTTP/1.1
+        Host: {{Hostname}}
+        Cookie: JS=true; JS_0a003e722337=true; Authorization=Basic {{cookie}}
+
+    host-redirects: true
+    max-redirects: 2
+    matchers-condition: and
+    matchers:
+      - type: regex
+        part: body
+        regex:
+          - 'location\.href(.*)\/([A-Z]+)\/userRpm\/Index\.htm";'
+
+      - type: word
+        part: header
+        words:
+          - text/html
+
+      - type: status
+        part: header
+        status:
+          - 200

From af6353e0cac6d78edcd27eac0e93cf56dba7a191 Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Tue, 24 Sep 2024 03:26:59 +0530
Subject: [PATCH 2/2] Update tplink-wR940n-default-login.yaml

---
 http/default-logins/tplink/tplink-wR940n-default-login.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/http/default-logins/tplink/tplink-wR940n-default-login.yaml b/http/default-logins/tplink/tplink-wR940n-default-login.yaml
index 3ed3540be2..934d1bca33 100644
--- a/http/default-logins/tplink/tplink-wR940n-default-login.yaml
+++ b/http/default-logins/tplink/tplink-wR940n-default-login.yaml
@@ -21,7 +21,7 @@ http:
       - |
         GET /userRpm/LoginRpm.htm?Save=Save HTTP/1.1
         Host: {{Hostname}}
-        Cookie: JS=true; JS_0a003e722337=true; Authorization=Basic {{cookie}}
+        Cookie: JS=true; Authorization=Basic {{cookie}}
 
     host-redirects: true
     max-redirects: 2