cbcvebase.
CVE-2018-9161
published 2018-03-31

CVE-2018-9161: Prisma Industriale Checkweigher PrismaWEB 1.21 allows remote attackers to discover the hardcoded prisma password for the prismaweb account by reading…

PriorityP279critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
58.53%
99.0th percentile
Prisma Industriale Checkweigher PrismaWEB 1.21 allows remote attackers to discover the hardcoded prisma password for the prismaweb account by reading user/scripts/login_par.js.

Affected

1 ranges
VendorProductVersion rangeFixed in
prismaindustrialecheckweigher_prismaweb

Detection & IOCsextracted from sources · hover to see the quote

path/user/scripts/login_par.js
path/scripts/functions_cookie.js
url{{BaseURL}}/user/scripts/login_par.js
  • HTTP GET request to /user/scripts/login_par.js returning HTTP 200 with body containing both 'txtChkUser' and 'txtChkPassword' strings indicates exposed hardcoded credentials.
  • The hardcoded credential for account 'prismaweb' (password: 'prisma') is stored in /user/scripts/login_par.js and is accessible without authentication.
  • ·Vulnerability is confirmed only on PrismaWEB version 1.21; other versions may or may not be affected.

CVSS provenance

nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.