nuclei-templates/exposures/configs/ftp-credentials-exposure.yaml

37 lines
762 B
YAML
Raw Normal View History

2021-02-20 17:11:54 +00:00
id: ftp-credentials-exposure
info:
2023-04-21 14:49:32 +00:00
name: FTP Credentials Exposure
2021-02-20 17:11:54 +00:00
author: pikpikcu
severity: high
description: FTP credentials were detected.
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cwe-id: CWE-200
2023-04-22 07:53:53 +00:00
metadata:
verified: "true"
google-query: inurl:"/ftpsync.settings"
2021-04-06 06:46:11 +00:00
tags: config,ftp,exposure
2021-02-20 17:11:54 +00:00
requests:
- method: GET
path:
- "{{BaseURL}}/ftpsync.settings"
matchers-condition: and
matchers:
- type: word
part: body
2023-04-22 07:53:53 +00:00
words:
- "FTPSync"
- "overwrite_newer_prevention"
- "default_folder_permissions"
2021-02-22 06:28:50 +00:00
condition: and
2021-02-20 17:11:54 +00:00
- type: status
status:
- 200
# Enhanced by md on 2023/02/09