Skip to content
Nuclei Templates

Oracle Business Intelligence Default Login

ID: oracle-business-intelligence-login

Severity: high

Author: milo2012

Tags: oracle,default-login

Description

Section titled “Description”

Oracle Business Intelligence default admin credentials were discovered.

YAML Source

Section titled “YAML Source”
id: oracle-business-intelligence-login


info:
  name: Oracle Business Intelligence Default Login
  author: milo2012
  severity: high
  description: Oracle Business Intelligence default admin credentials were discovered.
  reference:
    - https://docs.oracle.com/cd/E12096_01/books/AnyDeploy/AnyDeployMisc2.html
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
    cvss-score: 8.3
    cwe-id: CWE-522
  metadata:
    max-request: 1
  tags: oracle,default-login


http:
  - raw:
      - |
        POST /xmlpserver/services/XMLPService HTTP/1.1
        Host: {{Hostname}}
        Content-Type: text/xml
        SOAPAction: ""
        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8


        <soapenv:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:rep="http://xmlns.oracle.com/oxp/service/report">
           <soapenv:Header/>
           <soapenv:Body>
              <rep:createSession soapenv:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/">
                 <username xsi:type="xsd:string">{{username}}</username>
                 <password xsi:type="xsd:string">{{password}}</password>
                 <domain xsi:type="xsd:string">bi</domain>
              </rep:createSession>
           </soapenv:Body>
        </soapenv:Envelope>


    payloads:
      username:
        - Administrator
      password:
        - Administrator
    attack: pitchfork


    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200


      - type: word
        words:
          - 'createSessionReturn'
        part: body
# digest: 4a0a0047304502200559c3cab9c9dcd17d560c179f031ebb55c5d3ea1f870730606c9349fb858dca022100f7d2397a100712169599664acd06ced52e96a48ecaaa9241e1ed650dede43047:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/default-logins/oracle/businessintelligence-default-login.yaml"

View on Github