{"id":2467,"date":"2021-01-28T20:13:18","date_gmt":"2021-01-28T19:13:18","guid":{"rendered":"https:\/\/andreas-klingler.de\/infosec\/?p=2467"},"modified":"2023-12-24T12:25:01","modified_gmt":"2023-12-24T11:25:01","slug":"coldfusion","status":"publish","type":"post","link":"https:\/\/infosec.andreas-klingler.de\/?p=2467","title":{"rendered":"Coldfusion"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">Ver\u00adsion 8 has an inter\u00adest\u00ading vulnerability.<\/p>\n\n\n\n<ol class=\"wp-block-list\"><li>Direc\u00adto\u00adry tra\u00adver\u00adsal with multiple\/remote\/14641.py reveals a <span class=\"caps\">SHA1<\/span> pass\u00adword&nbsp;hash.<\/li><li>In the pub\u00adlicly avail\u00adable login page, the salt can be accessed and added to the hash:<br>console.log(hex_hmac_sha1(document.loginform.salt.value, \u2018<span class=\"caps\">2F635F6D20E3FDE0C53075A84B68FB07DCEC9B03<\/span>\u2019));<\/li><\/ol>\n","protected":false},"excerpt":{"rendered":"<p>Ver\u00adsion 8 has an inter\u00adest\u00ading vul\u00adner\u00ada\u00adbil\u00adi\u00adty. Direc\u00adto\u00adry tra\u00adver\u00adsal with multiple\/remote\/14641.py reveals a <span class=\"caps\">SHA1<\/span> pass\u00adword&nbsp;hash. In the pub\u00adlicly avail\u00adable login page, the salt can be accessed and added to the hash:console.log(hex_hmac_sha1(document.loginform.salt.value, \u2018<span class=\"caps\">2F635F6D20E3FDE0C53075A84B68FB07DCEC9B03<\/span>\u2019));<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"wp_typography_post_enhancements_disabled":false,"footnotes":""},"categories":[477],"tags":[],"class_list":["post-2467","post","type-post","status-publish","format-standard","hentry","category-software"],"_links":{"self":[{"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/posts\/2467","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2467"}],"version-history":[{"count":1,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/posts\/2467\/revisions"}],"predecessor-version":[{"id":2468,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/posts\/2467\/revisions\/2468"}],"wp:attachment":[{"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2467"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2467"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2467"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}