nuclei-templates/http/exposed-panels/concrete5/concrete5-install.yaml

42 lines
920 B
YAML
Raw Normal View History

2022-01-19 08:08:59 +00:00
id: concrete5-install
2022-01-19 08:08:59 +00:00
info:
name: Concrete5 Install Panel
2022-01-19 08:19:13 +00:00
author: osamahamad,princechaddha
2022-01-19 08:08:59 +00:00
severity: critical
description: A Concrete5 installation panel was discovered.
reference:
- https://documentation.concretecms.org/developers/introduction/installing-concrete-cms
2022-01-19 08:08:59 +00:00
metadata:
max-request: 2
2022-08-14 14:41:49 +00:00
verified: true
2022-01-19 08:08:59 +00:00
shodan-query: http.title:"Install concrete5"
2022-08-15 21:48:46 +00:00
tags: panel,install,concrete,cms
2022-01-19 08:08:59 +00:00
http:
2022-01-19 08:08:59 +00:00
- method: GET
path:
- "{{BaseURL}}/index.php/install"
2022-01-19 08:19:13 +00:00
- "{{BaseURL}}/concrete5/index.php/install"
2022-01-19 08:08:59 +00:00
2022-08-14 14:41:49 +00:00
stop-at-first-match: true
2022-01-19 08:08:59 +00:00
matchers-condition: and
matchers:
- type: word
part: body
words:
- '<title>Install concrete5</title>'
2022-08-14 14:41:49 +00:00
- type: status
status:
- 200
2022-01-19 08:08:59 +00:00
extractors:
- type: regex
part: body
group: 1
regex:
2022-01-19 08:19:13 +00:00
- 'Version ([0-9.]+)'
# Enhanced by mp on 2022/03/21