{"id":59784,"date":"2024-09-18T17:50:22","date_gmt":"2024-09-18T14:50:22","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/181603\/oes10-insecure.txt"},"modified":"2024-09-18T17:50:22","modified_gmt":"2024-09-18T14:50:22","slug":"online-exam-system-1-0-insecure-settings","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/online-exam-system-1-0-insecure-settings\/","title":{"rendered":"Online Exam System 1.0 Insecure Settings"},"content":{"rendered":"
\n
Online Exam System 1.0 Insecure Settings<\/strong><\/a><\/dt>\n
Posted Sep 18, 2024<\/a><\/dd>\n
Authored by indoushka<\/a><\/dd>\n
\n

Online Exam System version 1.0 suffers from an ignored default credential vulnerability.<\/p>\n<\/dd>\n

tags<\/span> | exploit<\/a><\/dd>\n
SHA-256<\/span> | 334bf4bade0494de08909a3410e621223fa30f288581d2a97ef3a411eb7d1432<\/code><\/dd>\n
Download<\/a> | Favorite<\/a> | View<\/a><\/dd>\n<\/dl>\n
\n
====================================================================================================================================
| # Title : Online Exam System 1.0 Insecure Settings Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Fr(Pro) \/ browser : Mozilla firefox 130.0.0 (64 bits) |
| # Vendor : https:\/\/www.kashipara.com\/project\/download\/project2\/user\/2024\/202406\/kashipara.com_exam-zip.zip |
====================================================================================================================================
poc :<\/p>[+] Dorking \u0130n Google Or Other Search Enggine.<\/p>[+] Insecure Settings : appears to leave a default administrative account in place post installation.<\/p>[+] use payload : <\/p>
Username: admin<\/p>
Password: 123<\/p>[+] http:\/\/127.0.0.1\/exam\/admin\/<\/p>
Greetings to :==================================================
jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R |
================================================================
<\/p><\/code><\/pre>\n<\/div>\n","protected":false},"excerpt":{"rendered":"
Online Exam System 1.0 Insecure Settings Posted Sep 18, 2024 Authored by indoushka Online Exam System version 1.0 suffers from an ignored default credential vulnerability. tags | exploit SHA-256 | 334bf4bade0494de08909a3410e621223fa30f288581d2a97ef3a411eb7d1432 Download | Favorite | View ====================================================================================================================================| # Title : Online Exam System 1.0 Insecure Settings Vulnerability || # Author : indoushka || # Tested …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-59784","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59784","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=59784"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59784\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=59784"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=59784"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=59784"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}