nuclei-templates/http/misconfiguration/installer/openemr-setup-installer.yaml

36 lines
1011 B
YAML
Raw Normal View History

2024-05-28 02:14:39 +00:00
id: openemr-setup-installer
info:
name: OpenEMR Setup Installation Page - Exposure
author: DhiyaneshDK
severity: high
description: |
Detects exposed OpenEMR setup installation pages which could allow unauthorized access or information disclosure.
reference:
- https://www.open-emr.org/
2024-09-10 09:08:16 +00:00
classification:
cpe: cpe:2.3:a:open-emr:openemr:*:*:*:*:*:*:*:*
2024-05-28 02:14:39 +00:00
metadata:
verified: true
max-request: 1
2024-09-10 08:22:50 +00:00
vendor: open-emr
2024-09-10 09:08:16 +00:00
product: openemr
shodan-query: title:"OpenEMR Setup Tool"
2024-05-28 02:14:39 +00:00
tags: misconfig,install,exposure,openemr
http:
- method: GET
path:
- "{{BaseURL}}/setup.php"
matchers-condition: and
matchers:
- type: word
part: body
words:
- "<title>OpenEMR Setup Tool</title>"
- type: status
status:
- 200
2024-09-12 05:14:01 +00:00
# digest: 4a0a00473045022014d62ce1c4e2e6faf917ebe45c785cecd20aa1e714a5fc74873c339ca2fa55c9022100e742a7462aa860162594f975fd33a7337aced86e2d03f711c0fca2287c6c70df:922c64590222798bb761d5b6d8e72950