==================================================================================================================================== | # Title : ME-FI DOT 2.2 Insecure Settings Vulnerability | | # Author : indoushka | | # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 108.0.3(32-bit) | | # Vendor : https://www.me-fi.com | | # Dork : "Developed by ME-FI.COM" | ==================================================================================================================================== poc : [+] The vulnerability is about leaving the default settings During the installation of the script and using the default username and password [+] Dorking İn Google Or Other Search Enggine. [+] Login = user =admin pass = admin or user : admin pass : 1234 [+] http://127.0.0.1/test/login <====| Login Greetings to :========================================================================================================================= | jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm* | | =======================================================================================================================================