nuclei-templates/http/vulnerabilities/wordpress/wp-sym404.yaml

31 lines
839 B
YAML
Raw Normal View History

id: wp-sym404
2022-06-23 16:39:44 +00:00
info:
name: Wordpress sym404 directory
2022-06-23 16:39:44 +00:00
author: pussycat0x
severity: high
2022-06-23 16:39:44 +00:00
description: Searches for sensitive directories present in the sym404.
2022-06-24 19:32:35 +00:00
reference:
- https://twitter.com/momika233/status/1540325055280070656
2022-06-24 19:06:26 +00:00
metadata:
verified: true
2023-10-14 11:27:55 +00:00
max-request: 1
google-query: inurl:"/wp-includes/sym404/"
tags: wordpress,listing,wp,exposure
2022-06-23 16:39:44 +00:00
http:
2022-06-23 16:39:44 +00:00
- method: GET
path:
2022-06-24 18:45:02 +00:00
- "{{BaseURL}}/wp-includes/sym404/root/etc/passwd"
2022-06-23 16:39:44 +00:00
matchers-condition: and
matchers:
2022-06-24 18:45:02 +00:00
- type: regex
part: body
regex:
- "root:.*:0:0:"
2022-06-23 16:39:44 +00:00
- type: status
status:
- 200
# digest: 4a0a0047304502205dd3cf13cb2c1cbe9e8c9ee5b5ec1cadba1c5cdc6e7da781e9b6316ebbffb061022100a57c3751a86bfebb593c932bdc096bb4fffe403802494bc0fc9bd5cf6cc9fc23:922c64590222798bb761d5b6d8e72950