h00die contributed the WordPress Loginizer log SQLi Scanner auxiliary scanner module that exploits the vulnerability ( CVE-2020-27615 to extract user credentials and then store them in the database. Security researcher mslavco discovered an unauthenticated, time-based blind SQL injection in the Loginizer WordPress plugin’s log parameter. One would hope all vulnerable MikroTik’s have been patched by now, but if you happen to discover a vulnerable instance it's time to dump the credentials! Vulnerable versions of MikroTik RouterOS are: The auxiliary/gather/mikrotik_winbox_fileread module exploits this vulnerability by communicating with the Winbox server on port 8291 and requests the system user database file. The vulnerability CVE-2018-14847 allows any file from the router to be read through the Winbox server in RouterOS due to a lack of validation and trust in the Winbox client.
H00die contributed the Mikrotik unauthenticated directory traversal file read auxiliary gather module, largely a port of the PoC by Ali Mosajjal.
Last updated at Fri, 19:55:51 GMT Insert 'What Year Is It' meme
0 kommentar(er)
