Web
Nmap discovered a Web server on the target port 1880
The running service is Node.js (Express middleware)
webroot is a login page for node-red
node-red is a flow-based, low-code development tool for visual programming developed originally by IBM for wiring together hardware devices, APIs and online services as part of the Internet of Things it provides a web browser-based flow editor, which can be used to create JavaScript functions. Elements of applications can be saved or shared for re-use. The runtime is built on Node.js. The flows created in Node-RED are stored using JSON. Since version 0.14, MQTT nodes can make properly configured TLS connections.
there are several online articles demonstrating exploitation of a node-red instance via lfi and RCE However, those methods requires authentication
while i was testing for some weak/default credentials, i noticed that the web application doesn’t response with the following credential; admin:password
This may suggest that it’s a dummy instance
it turns out that the aforementioned “hanging” only occurs if a request is made with admin:password
No progression can be made. Moving on.