nuclei-templates/http/exposed-panels/zte-panel.yaml

47 lines
1.9 KiB
YAML
Raw Normal View History

2021-03-30 00:01:39 +00:00
id: zte-panel
info:
name: ZTE Panel - Detect
2022-06-04 10:32:18 +00:00
author: its0x08,idealphase
2021-03-30 00:01:39 +00:00
severity: info
description: |
ZTE panel was detected. ZTE Corporation is a global leader in telecommunications and information technology. Founded in 1985 and listed on both the Hong Kong and Shenzhen Stock Exchanges, the company has been committed to providing innovative technologies and integrated solutions for global operators, government and enterprise, and consumers from over 160 countries across the globe. ZTE Corporation is a global leader in telecommunications and information technology. Founded in 1985 and listed on both the Hong Kong and Shenzhen Stock Exchanges, the company has been committed to providing innovative technologies and integrated solutions for global operators, government and enterprise, and consumers from over 160 countries across the globe.
2023-10-14 11:27:55 +00:00
reference:
- https://www.zte.com.cn/global/
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
2023-10-14 11:27:55 +00:00
cvss-score: 0
cwe-id: CWE-200
metadata:
verified: true
2023-10-14 11:27:55 +00:00
max-request: 1
2022-06-04 11:00:54 +00:00
shodan-query: http.html:"ZTE Corporation"
2022-01-03 16:06:23 +00:00
tags: panel,zte
2021-03-30 00:01:39 +00:00
http:
2021-03-30 00:01:39 +00:00
- method: GET
path:
- "{{BaseURL}}"
2022-06-04 10:32:18 +00:00
2021-03-30 00:01:39 +00:00
matchers:
- type: word
2022-06-04 10:32:18 +00:00
part: body
2021-03-30 00:01:39 +00:00
words:
2021-03-30 00:28:16 +00:00
- "ZTE Corporation. All rights reserved. </div>"
- '<form name="fLogin" id="fLogin" method="post" onsubmit="return false;" action="">'
condition: and
2021-03-30 00:28:16 +00:00
- type: word
2022-06-04 10:32:18 +00:00
part: header
2021-03-30 00:28:16 +00:00
words:
- "Mini web server 1.0 ZTE corp 2005."
extractors:
- type: regex
part: body
group: 1
regex:
- '<div class="type"><font id="">(.+)<\/font><\/div>'
# digest: 4b0a004830460221008ec1826df22005343c2ed0b7f25080715a218b2b6107e0546ccb86fcc00873c6022100d18bd57e1e16e87054fe44d7c8d539c4ded3099975349b7e6cd9019ac7959c2d:922c64590222798bb761d5b6d8e72950