nuclei-templates/http/vulnerabilities/jenkins/unauthenticated-jenkins.yaml

28 lines
705 B
YAML
Raw Normal View History

2022-11-13 20:54:52 +00:00
id: unauthenticated-jenkins
2020-09-15 16:21:32 +00:00
info:
2024-05-02 18:33:32 +00:00
name: Jenkins Dashboard - Unauthenticated Access
2020-09-15 16:21:32 +00:00
author: dhiyaneshDK
2020-09-20 12:57:43 +00:00
severity: high
2024-01-02 15:45:12 +00:00
description: Jenkins Dashboard is exposed to external users.
metadata:
max-request: 2
2023-10-14 11:27:55 +00:00
tags: jenkins
2020-09-15 16:21:32 +00:00
http:
2020-09-15 16:21:32 +00:00
- method: GET
path:
- "{{BaseURL}}"
2024-03-30 02:26:46 +00:00
- "{{BaseURL}}/jenkins/"
2020-09-15 16:21:32 +00:00
2024-03-30 06:30:36 +00:00
stop-at-first-match: true
2020-09-15 16:21:32 +00:00
matchers-condition: and
matchers:
- type: word
words:
- Dashboard [Jenkins]
- type: status
status:
- 200
# digest: 490a0046304402202b26e420567b42984cf73e1432a2d97a046c3a65adce12505d6c7f15b8117a3702207727a946b018ec8d53a5d62b3cb34129cdd87d1d85d2fac1efa37332668197eb:922c64590222798bb761d5b6d8e72950