nuclei-templates/cnvd/CNVD-2021-10543.yaml

id: CNVD-2021-10543

info:
  name: EEA Information Disclosure
  author: pikpikcu
  severity: high
  reference: https://www.cnvd.org.cn/flaw/show/CNVD-2021-10543
  tags: config,exposure,cnvd

requests:
  - method: GET
    path:
      - "{{BaseURL}}/authenticationserverservlet"

    matchers-condition: and
    matchers:

      - type: regex
        regex:
          - "<username>(.*?)</username>"
          - "<password>(.*?)</password>"
        condition: and

      - type: status
        status:
          - 200
moving files around 2021-06-03 16:24:08 +00:00			`id: CNVD-2021-10543`
Create eea-disclosure.yaml 2021-03-29 18:08:24 +00:00
			`info:`
			`name: EEA Information Disclosure`
			`author: pikpikcu`
			`severity: high`
			`reference: https://www.cnvd.org.cn/flaw/show/CNVD-2021-10543`
moving files around 2021-06-03 16:24:08 +00:00			`tags: config,exposure,cnvd`
Create eea-disclosure.yaml 2021-03-29 18:08:24 +00:00
			`requests:`
			`- method: GET`
			`path:`
			`- "{{BaseURL}}/authenticationserverservlet"`

			`matchers-condition: and`
			`matchers:`

			`- type: regex`
			`regex:`
			`- "<username>(.*?)</username>"`
			`- "<password>(.*?)</password>"`
			`condition: and`

			`- type: status`
			`status:`
			`- 200`