ZXHN H108N V2.5, module 'ZTE ZXV10 RCE': Fixed false positive issue #305 (#346)

* Router detected as vulnerable while its not #305 * Fixed typo error * Check status code instead of string

ZXHN H108N V2.5, module 'ZTE ZXV10 RCE': Fixed false positive issue #305 (#346)
* Router detected as vulnerable while its not #305 * Fixed typo error * Check status code instead of string
52679c7c · Alex Hilgert · Marcin Bury · f8f7d65e · 52679c7c
Commit 52679c7c authored Nov 14, 2017 by Alex Hilgert Committed by Marcin Bury Nov 14, 2017
Show whitespace changes
Inline Side-by-side

Showing with 3 additions and 1 deletions

zxv10_rce.py routersploit/modules/exploits/routers/zte/zxv10_rce.py +3 -1

No files found.
--- a/routersploit/modules/exploits/routers/zte/zxv10_rce.py
+++ b/routersploit/modules/exploits/routers/zte/zxv10_rce.py
@@ -137,7 +137,9 @@ class Exploit(exploits.Exploit):
                        "Password": self.password}
                response = http_request("POST", url, self.session, data=data)
-                if "Username" not in response.text and "Password" not in response.text:
+                if "Username" not in response.text \
+                        and "Password" not in response.text \
+                        and response.status_code != 404:
                    print_success("Successful authentication")
                    return True
        except Exception: