Subscribe via feed.

WEMS BEMS 21.3.1 Undocumented Backdoor Account

Posted by deepcore on December 31, 2019 – 10:18 pm

WEMS BEMS version 21.3.1 has an undocumented backdoor account that is Base64 encoded. These sets of credentials are never exposed to the end-user and cannot be changed through any normal operation of the controller thru the RMI.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »