omarhashem123
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Exploit Title: Nortek Linear eMerge E3-Series - account takeover | |
| # Exploit Author: Omar Hashim | |
| # Version: 0.32-07p | |
| # Vendor home page: https://www.nortekcontrol.com/access-control/ | |
| # Vendor home page: https://linear-solutions.com/ | |
| # Authentication Required: No | |
| # CVE: CVE-2022-31798 | |
| # Description | |
| ==================== |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Exploit Title: Nortek Linear eMerge E3-Series - Blind OS Command Injection | |
| # Exploit Author: Omar Hashim | |
| # Version: 0.32-09c | |
| # Vendor home page: https://www.nortekcontrol.com/access-control/ | |
| # Vendor home page: https://linear-solutions.com/ | |
| # Authentication Required: No | |
| # CVE: CVE-2022-31499 | |
| # POC: | |
| ==================== |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Exploit Title: Nortek Linear eMerge E3-Series - Information Disclosure leads to access admin dashboard | |
| # Exploit Author: Omar Hashim | |
| # Version: 0.32-07p,0.32-07e,0.32-08f,0.32-09c | |
| # Vendor home page : https://www.nortekcontrol.com/access-control/ | |
| # Vendor home page : https://linear-solutions.com/ | |
| # Authentication Required: No | |
| # CVE : CVE-2022-31269 | |
| # Description | |
| ==================== |
omarhashem123
/ PoC.py
Last active
May 16, 2021 11:12
Create 300 account at https://community.appsheet.com
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import requests | |
| import re | |
| import argparse | |
| import time | |
| parser = argparse.ArgumentParser("No rate limit in registration functionality in https://community.appsheet.com/", | |
| description='description:Tool that spider subdomains and extract endpoints') | |
| parser.add_argument('-e', help='file contain emails') | |
| parser.add_argument('-u', help='file contain usernames') | |
| parser.add_argument('-p', help='password for accounts') |