2020-12-19 12:23:40 +00:00
|
|
|
id: xprober-service
|
|
|
|
|
|
|
|
info:
|
|
|
|
name: X Prober server information leakage
|
|
|
|
author: pdteam
|
|
|
|
severity: low
|
2021-04-06 06:46:11 +00:00
|
|
|
tags: config,exposure
|
2021-04-02 13:10:33 +00:00
|
|
|
reference: https://twitter.com/bugbounty_tips/status/1339984643517423616
|
2020-12-19 12:23:40 +00:00
|
|
|
|
|
|
|
requests:
|
|
|
|
- method: GET
|
|
|
|
path:
|
|
|
|
- "{{BaseURL}}/xprober.php"
|
|
|
|
matchers:
|
|
|
|
- type: word
|
|
|
|
words:
|
|
|
|
- '"appName":"X Prober"'
|
|
|
|
- '<title>X Prober'
|
|
|
|
condition: and
|