nuclei-templates/misconfiguration/aem/aem-custom-script.yaml

48 lines
942 B
YAML
Raw Normal View History

id: aem-custom-script
2022-09-24 21:27:16 +00:00
info:
name: Adobe AEM Custom Scripts Exposure
2022-09-24 21:27:16 +00:00
author: DhiyaneshDK
2022-09-24 21:29:01 +00:00
severity: unknown
2022-09-24 21:27:16 +00:00
reference:
- https://www.slideshare.net/0ang3el/hacking-aem-sites
metadata:
shodan-query:
- http.title:"AEM Sign In"
- http.component:"Adobe Experience Manager"
tags: misconfig,aem,adobe
requests:
- method: GET
path:
- "{{BaseURL}}/apps.tidy.infinity.json"
- "{{BaseURL}}{{path}}"
iterate-all: true
extractors:
- type: json
part: body
name: path
json:
- '.[]'
internal: true
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
2022-09-26 06:27:13 +00:00
- '"jcr:primaryType":'
- '"jcr:createdBy":'
condition: and
2022-09-24 21:27:16 +00:00
- type: word
part: header
words:
- application/json
- type: status
status:
- 200