nuclei-templates/vulnerabilities/couchdb-adminparty.yaml

28 lines
684 B
YAML
Raw Normal View History

2020-07-02 13:53:41 +00:00
id: couchdb-adminparty
info:
2020-08-25 15:29:11 +00:00
name: CouchDB Admin Party
2020-07-02 13:53:41 +00:00
author: organiccrap
severity: high
2020-08-25 15:29:11 +00:00
description: Requests made against CouchDB is done in the context of an admin user.
2020-07-02 13:53:41 +00:00
# commonly runs on port 5984/http
requests:
- method: GET
path:
- '{{BaseURL}}/_users/_all_docs'
headers:
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:55.0) Gecko/20100101 Firefox/55
matchers-condition: and
matchers:
- type: word
words:
- CouchDB/
- Erlang OTP/
part: header
condition: and
- type: word
words:
- total_rows
- offset
part: body
condition: and