nuclei-templates/files/magento-config.yaml

26 lines
485 B
YAML
Raw Normal View History

2020-10-15 17:21:05 +00:00
id: magento-config
info:
name: Magento Config Disclosure
author: geeknik
severity: medium
requests:
- method: GET
path:
- "{{BaseURL}}/app/etc/local.xml"
- "{{BaseURL}}/store/app/etc/local.xml"
2020-10-15 17:51:29 +00:00
matchers-condition: and
2020-10-15 17:21:05 +00:00
matchers:
- type: status
status: 200
2020-10-15 17:51:29 +00:00
2020-10-15 17:21:05 +00:00
- type: word
part: header
words:
- "text/xml"
2020-10-15 17:51:29 +00:00
2020-10-15 17:21:05 +00:00
- type: word
part: body
words:
2020-10-15 17:51:29 +00:00
- "Magento"