nuclei-templates/misconfiguration/hadoop-unauth.yaml

26 lines
507 B
YAML
Raw Normal View History

id: hadoop-unauth
info:
name: Apache Hadoop Unauth
2021-02-24 17:25:41 +00:00
author: pdteam
severity: low
2021-03-12 08:57:14 +00:00
tags: apache,hadoop,unauth
requests:
- method: GET
path:
- '{{BaseURL}}/ws/v1/cluster/info'
2021-07-20 12:29:10 +00:00
- '{{BaseURL}}/ws/v1/cluster/apps/new-application'
2021-07-25 20:03:02 +00:00
matchers-condition: or
matchers:
- type: word
words:
- 'hadoopVersion'
- 'resourceManagerVersionBuiltOn'
2021-07-20 12:29:10 +00:00
condition: and
2021-07-25 20:03:02 +00:00
- type: word
words:
- 'javax.ws.rs.WebApplicationException'