JM-DATA ONU JF511-TV Multiple Remote Vulnerabilities Vendor: JM-DATA GmbH Product web page: https://www.jm-data.at Affected version: 1.0.67 1.0.62 1.0.55 Summary: This ONU is the perfect GEPON home and business gateway. It is an all-rounder in perfection. It can BRIDGE/NAT/RIP ROUTEND and COMBINED. Desc: The device suffers from multiple vulnerabilities including: Default Credentials, CSRF, Authenticated Stored XSS and Open Redirect. Tested on: Boa/0.93.15 Vulnerability discovered by Neurogenesia @zeroscience Advisory ID: ZSL-2022-5708 Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5708.php 24.04.2022 -- Default credentials: -------------------- user:user Stored XSS / HTML Injection: ----------------------------
CSRF (delete IP entry filter): ------------------------------
Open Redirect: -------------- https://192.168.1.2:8443/boaform/formWirelessTbl?submit-url=https://zeroscience.mk common.js: ---------- /* * isCharUnsafe - test a character whether is unsafe * @c: character to test */ function isCharUnsafe(c) { var unsafeString = "\"\\`\+\,='\t"; return unsafeString.indexOf(c) != -1 || c.charCodeAt(0) <= 32 || c.charCodeAt(0) >= 123; } /* * isIncludeInvalidChar - test a string whether includes invalid characters * @s: string to test */ function isIncludeInvalidChar(s) { var i; for (i = 0; i < s.length; i++) { if (isCharUnsafe(s.charAt(i)) == true) return true; } return false; }