Merge pull request #6418 from s3verus/xui-weak-login

add xui-weak-login template
2026-01-31 15:53:33 +08:00 · 2022-12-27 21:25:09 +05:30
parent 0efd3e0a25 e5a67cfeba
commit 3043ab0ca1
1 changed files with 48 additions and 0 deletions
--- a/default-logins/xui-weak-login.yaml
+++ b/default-logins/xui-weak-login.yaml
@@ -0,0 +1,48 @@
+id: xui-weak-login
+
+info:
+  name: X-UI Login Default Login
+  author: dali
+  severity: high
+  description: |
+    X-UI Default Login Credentials.
+  reference:
+    - https://github.com/vaxilu/x-ui
+    - https://seakfind.github.io/2021/10/10/X-UI/#:~:text=By%20default%2C%20the%20login%20user,the%20password%20is%20also%20admin%20.
+  classification:
+    cwe-id: CWE-798
+  metadata:
+    verified: "true"
+    shodan-query: title:"X-UI Login"
+  tags: x-ui,default-login
+
+requests:
+  - method: POST
+    path:
+      - "{{BaseURL}}/login"
+    headers:
+      content-type: application/x-www-form-urlencoded
+    body: "username={{username}}&password={{password}}"
+
+    payloads:
+      username:
+        - "admin"
+      password:
+        - "admin"
+    attack: pitchfork
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - '"success":true'
+
+      - type: word
+        part: header
+        words:
+          - 'application/json'
+
+      - type: status
+        status:
+          - 200