CVE-2024-28987

This repository contains a scanner for CVE-2024-28987, which exploits hardcoded credentials in SolarWinds Web Help Desk. The script checks for the presence of the vulnerability by attempting to authenticate with the default credentials.

This PoC exploits CVE-2024-28987, a hardcoded credential vulnerability in SolarWinds Web Help Desk, by sending an authenticated request to retrieve helpdesk tickets. The exploit uses a known base64-encoded credential to bypass authentication.

This PoC exploits CVE-2024-28987, a hardcoded credential vulnerability in SolarWinds Web Help Desk, to retrieve ticket data via unauthorized API access. It fetches up to 25 recent tickets and their details, then analyzes ticket IDs to estimate the total number of tickets in the system.

The repository contains a Python script that scans for the presence of hardcoded credentials in SolarWinds Web Help Desk (CVE-2024-28987). It checks for a specific endpoint and verifies if the default credentials 'helpdeskIntegrationUser:dev-C4F8025E7' are valid.

This Metasploit module exploits a hardcoded credential vulnerability (CVE-2024-28987) in SolarWinds Web Help Desk to authenticate and retrieve ticket data. It uses a backdoor account with known credentials to access the system.