nuclei-templates/exposures/configs/magento-config.yaml

29 lines
502 B
YAML
Raw Normal View History

2020-10-15 17:21:05 +00:00
id: magento-config
2020-10-15 17:21:05 +00:00
info:
name: Magento Config Disclosure
author: geeknik
severity: medium
2021-05-18 13:53:10 +00:00
tags: config,exposure,magento
2020-10-15 17:21:05 +00:00
requests:
2020-10-15 17:57:19 +00:00
- method: GET
path:
- "{{BaseURL}}/app/etc/local.xml"
- "{{BaseURL}}/store/app/etc/local.xml"
2020-10-15 17:51:29 +00:00
2020-10-15 17:54:37 +00:00
matchers-condition: and
matchers:
2020-10-15 17:21:05 +00:00
- type: status
2020-10-15 17:59:04 +00:00
status:
- 200
2020-10-15 17:51:29 +00:00
2020-10-15 17:21:05 +00:00
- type: word
2020-10-15 18:03:50 +00:00
words:
- "text/xml"
part: header
2020-10-15 17:51:29 +00:00
2020-10-15 17:21:05 +00:00
- type: word
2020-10-15 18:03:50 +00:00
words:
- "Magento"
part: body