Plex
nmap discovered a plex Media Server running over HTTP on the target port 32400
i was also able to see the platinum upnp 1.0.5.13 service on the port 1184 and 32469 as it is used by plex Media Server
Webroot
I got re-directed to a login page and it’s indeed the Plex Media Server
I tried some weak/default credentials and none of them worked.
On top of that, there is a brute-force mitigation.
Sign-up Attempt
Sign-up is available.
Creating a testing account
Upon clicking the button, I get this prompt.
test is an existing username. I may be able to enumerate usernames through this error message
I will just create a user, test123
It says that it’s taken as well.
Upon attempting again, the web server now prompts a different error.
There could be an issue within the web server itself or it may be due to the brute-force mitigation that I pointed out earlier.
I was finally able to sign-up
Logged in to the web application
I was able to get the PLEX version under setting tab
However, enumerating the version did not give me any direction as it doesn’t have any known vulnerabilities