nuclei-templates/exposures/logs/roundcube-log-disclosure.yaml

27 lines
561 B
YAML
Raw Normal View History

2021-07-21 08:31:09 +00:00
id: roundcube-log-disclosure
info:
name: Roundcube Log Disclosure
author: dhiyaneshDk
severity: low
reference:
- https://github.com/detectify/ugly-duckling/blob/master/modules/crowdsourced/roundcube-log-disclosure.json
2021-07-21 08:31:09 +00:00
tags: exposure,logs
requests:
- method: GET
path:
- "{{BaseURL}}/roundcube/logs/sendmail"
- "{{BaseURL}}/roundcube/logs/errors.log"
2021-07-21 08:31:09 +00:00
matchers-condition: and
matchers:
- type: word
words:
- "IMAP Error:"
part: body
2021-07-21 08:31:09 +00:00
- type: status
status:
- 200