Weak credentials for nutty.ubnt.com

Disclosed: 2017-03-29 13:04:12 By korprit To ui

Medium

Vulnerability Details

nutty.ubnt.com has a login link, when clicking on it the user is presented with a login form. using 'admin' for both username and password results in valid session. this account allow for the upload of arbitrary files. I am checking to see if this will allow for further functionality (like a webshell)

Actions

View on HackerOne

Report Stats

Report ID: 204052
State: Closed
Substate: informative
Upvotes: 3

Weak credentials for nutty.ubnt.com

Vulnerability Details

Actions

Report Stats

Share this report