2024-01-30 08:44:14 +00:00
id : node-express-dev-env
2024-01-25 09:32:41 +00:00
info :
2024-01-30 08:44:14 +00:00
name : Node.js Express NODE_ENV Development Mode
2024-01-25 09:32:41 +00:00
author : FLX
severity : medium
2024-01-30 09:54:28 +00:00
description : |
The Node.js application runs in development mode, which can expose sensitive information, such as source code and secrets, depending on the application.
2024-01-25 09:32:41 +00:00
reference :
- https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/express-development-mode-is-enabled/
- https://www.synopsys.com/blogs/software-security/nodejs-mean-stack-vulnerabilities.html
metadata :
2024-04-08 11:30:07 +00:00
max-request : 2
2024-04-08 11:34:33 +00:00
verified : true
2024-01-25 09:32:41 +00:00
shodan-query : "X-Powered-By: Express"
2024-01-30 09:53:48 +00:00
tags : nodejs,express,misconfig,devops,cicd,trace
2024-04-08 11:34:33 +00:00
2024-01-25 19:20:00 +00:00
flow : http(1) && http(2)
2024-01-25 09:32:41 +00:00
http :
2024-01-25 19:20:00 +00:00
- method : GET
path :
- "{{BaseURL}}"
matchers :
- type : dsl
internal : true
dsl :
- "contains(tolower(all_headers), 'x-powered-by: express')"
2024-01-25 09:32:41 +00:00
- raw :
- |
2024-01-30 08:44:14 +00:00
GET / HTTP/1.1
Host : {{Hostname}}
2024-01-25 09:32:41 +00:00
Content-Type : application/json
Connection : close
t
2024-01-30 08:44:14 +00:00
2024-01-25 09:32:41 +00:00
matchers :
- type : dsl
dsl :
2024-01-30 08:44:14 +00:00
- "status_code==400"
- "contains(body, 'SyntaxError: Unexpected token')"
- "contains(tolower(all_headers), 'x-powered-by: express')"
condition : and
2024-01-30 10:52:54 +00:00
# digest: 4a0a00473045022100d0debb95087af51d1c60b5f8e1135fff6358308570e9fb9618ea54e87a1568e502202d94de6ec99ca826bb5c199ea960e571d6f9d5030885a415efc44f831f393244:922c64590222798bb761d5b6d8e72950