edfd130ad1
11 changes to exploits/shellcodes BlueStacks 4.80.0.1060 - Denial of Service (PoC) RarmaRadio 2.72.3 - 'Server' Denial of Service (PoC) RarmaRadio 2.72.3 - 'Username' Denial of Service (PoC) TapinRadio 2.11.6 - 'Address' Denial of Service (PoC) TapinRadio 2.11.6 - 'Uername' Denial of Service (PoC) Zoho ManageEngine ServiceDesk Plus < 10.5 - Improper Access Restrictions Zoho ManageEngine ServiceDesk Plus 9.3 - Cross-Site Scripting AUO Solar Data Recorder < 1.3.0 - 'addr' Cross-Site Scripting Carel pCOWeb < B1.2.1 - Cross-Site Scripting Carel pCOWeb < B1.2.1 - Credentials Disclosure Horde Webmail 5.2.22 - Multiple Vulnerabilities
16 lines
No EOL
749 B
Text
16 lines
No EOL
749 B
Text
# Exploit Title: Carel pCOWeb - Unprotected Storage of Credentials
|
|
# Date: 2019-04-16
|
|
# Exploit Author: Luca.Chiou
|
|
# Vendor Homepage: https://www.carel.com/
|
|
# Version: Carel pCOWeb all versions prior to B1.2.1
|
|
# Tested on: It is a proprietary devices: http://www.carel.com/product/pcoweb-card
|
|
|
|
# 1. Description:
|
|
# The devices, Carel pCOWeb, store plaintext passwords,
|
|
# which may allow sensitive information to be read by someone with access to the device.
|
|
|
|
# 2. Proof of Concept:
|
|
# Browse the maintain user page in website:
|
|
# http://<Your<http://%3cYour> Modem IP>/config/pw_changeusers.html
|
|
# The user's information include Description, Username and Password.
|
|
# In user page, we can find out that user passwords stored in plaintext. |