nuclei-templates/security-misconfiguration/exposed-service-now.yaml

28 lines
859 B
YAML
Raw Normal View History

2021-01-01 14:03:32 +00:00
id: exposed-service-now
2021-01-01 12:45:01 +00:00
info:
name: ITMS-Misconfigured
author: dhiyaneshDK
severity: info
description: detectes misconfigured Service-now ITSM instances
2021-01-01 14:03:32 +00:00
reference: https://medium.com/@th3g3nt3l/multiple-information-exposed-due-to-misconfigured-service-now-itsm-instances-de7a303ebd56
2021-01-01 12:45:01 +00:00
# Thanks to Th3G3nt3lman for the writeup
# https://medium.com/@th3g3nt3l/multiple-information-exposed-due-to-misconfigured-service-now-itsm-instances-de7a303ebd56
2021-01-01 14:03:32 +00:00
# Exploitation :- https://github.com/leo-hildegarde/SnowDownKB/
2021-01-01 12:45:01 +00:00
requests:
- method: GET
path:
- "{{BaseURL}}/kb_view_customer.do?sysparm_article=KB00xxxx"
matchers-condition: and
matchers:
- type: word
words:
2021-01-01 14:03:32 +00:00
- 'Unfortunately the article you are looking for could not be found.'
2021-01-01 12:45:01 +00:00
part: body
- type: status
status:
2021-01-01 14:03:32 +00:00
- 200