2023-11-07 00:16:22 +05:30
|
|
|
id: postgres-weak-credentials
|
2023-11-03 00:36:37 +05:30
|
|
|
info:
|
2023-11-09 13:37:17 +05:30
|
|
|
name: Postgres - Default Logins
|
2023-11-03 00:36:37 +05:30
|
|
|
author: Ice3man
|
|
|
|
|
severity: high
|
2023-11-07 00:16:22 +05:30
|
|
|
description: |
|
|
|
|
|
Postgres service was accessed with easily guessed credentials.
|
2023-11-03 00:36:37 +05:30
|
|
|
metadata:
|
|
|
|
|
max-request: 9
|
|
|
|
|
shodan-query: port:5432
|
2023-11-09 14:14:00 +05:30
|
|
|
tags: js,postgres,default-login,network
|
2023-11-03 00:36:37 +05:30
|
|
|
|
|
|
|
|
javascript:
|
|
|
|
|
- pre-condition: |
|
|
|
|
|
var m = require("nuclei/postgres");
|
|
|
|
|
var c = m.PGClient();
|
|
|
|
|
c.IsPostgres(Host, Port);
|
|
|
|
|
|
|
|
|
|
code: |
|
|
|
|
|
var m = require("nuclei/postgres");
|
|
|
|
|
var c = m.PGClient();
|
|
|
|
|
c.Connect(Host, Port, User, Pass);
|
|
|
|
|
|
|
|
|
|
args:
|
|
|
|
|
Host: "{{Host}}"
|
|
|
|
|
Port: "5432"
|
|
|
|
|
User: "{{usernames}}"
|
|
|
|
|
Pass: "{{passwords}}"
|
|
|
|
|
|
|
|
|
|
attack: clusterbomb
|
|
|
|
|
payloads:
|
|
|
|
|
usernames:
|
|
|
|
|
- "postgres"
|
|
|
|
|
- "admin"
|
|
|
|
|
passwords:
|
|
|
|
|
- "password"
|
|
|
|
|
- "secret"
|
|
|
|
|
- "admin"
|
|
|
|
|
- "postgres"
|
|
|
|
|
|
|
|
|
|
stop-at-first-match: true
|
|
|
|
|
matchers:
|
|
|
|
|
- type: dsl
|
|
|
|
|
dsl:
|
|
|
|
|
- "response == true"
|
|
|
|
|
- "success == true"
|
|
|
|
|
condition: and
|
