My First Medium‑Severity Vulnerability: Exploiting Leaked Test Accounts in an EduCN Portal
The author describes discovering a medium‑severity information‑leak vulnerability in an educational portal by using a Google dork to locate a file exposing three default test accounts, then logging in with the admin credentials (password 123456) after other attack attempts failed.
The article reports a medium‑severity vulnerability discovered in January on an educational website.
The author employed the Google dork
site:edu.cn intext:"测试账号" "试用账号" filetype:xls|pdf|doc|docxto search for files that contain test‑account information. The search returned a document listing three test accounts—student, teacher, and admin—each using the password 123456.
The author first attempted common penetration‑testing techniques such as brute‑force password guessing, using a universal SQL password, and exploiting password‑reset logic flaws, but none succeeded in gaining access.
Using the leaked credentials, the author logged in with the highest‑privilege admin (教务) account. The login succeeded, granting full administrative rights, as shown in the following screenshots.
The author concludes that default test accounts with weak passwords constitute an information‑leak vulnerability of medium severity, underscoring the need for educational institutions to remove or secure such accounts to prevent unauthorized access.
Signed-in readers can open the original source through BestHub's protected redirect.
This article has been distilled and summarized from source material, then republished for learning and reference. If you believe it infringes your rights, please contactand we will review it promptly.
Black & White Path
We are the beacon of the cyber world, a stepping stone on the road to security.
How this landed with the community
Was this worth your time?
0 Comments
Thoughtful readers leave field notes, pushback, and hard-won operational detail here.