Advantech R-SeeNet Default Login
ID: rseenet-default-login
Severity: high
Author: princechaddha
Tags: rseenet,default-login
Description
Section titled “Description”Advantech R-SeeNet default admin credentials were discovered. R-SeeNet is a software system used for monitoring of status and functions of Advantech routers.
YAML Source
Section titled “YAML Source”id: rseenet-default-login
info: name: Advantech R-SeeNet Default Login author: princechaddha severity: high description: Advantech R-SeeNet default admin credentials were discovered. R-SeeNet is a software system used for monitoring of status and functions of Advantech routers. reference: - https://icr.advantech.cz/products/software/r-seenet classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L cvss-score: 8.3 cwe-id: CWE-522 metadata: max-request: 1 tags: rseenet,default-login
http: - raw: - | POST /index.php HTTP/1.1 Host: {{Hostname}} Content-Type: application/x-www-form-urlencoded
page=login_change&oper=0&username={{user}}&password={{pass}}&submit=Login
attack: pitchfork payloads: user: - admin pass: - conel
matchers-condition: and matchers: - type: regex part: body regex: - '<title>R-SeeNet (.*)</title>'
- type: word part: body words: - "User is succesfully logged."# digest: 4a0a00473045022100818f47d11b134dc265e1e6a885f5216f04cf25178d06e292dd3f97999db98c470220335c2f159bb0057adbf41626409320e84b0a9b5b3cef22871ac57536495b5844:922c64590222798bb761d5b6d8e72950Guide to check the vulnerabilities
Section titled “Guide to check the vulnerabilities”This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.
$ nuclei -u "URL" -t "http/default-logins/rseenet/rseenet-default-login.yaml"