nuclei-templates/http/misconfiguration/sap/sap-netweaver-info-leak.yaml

31 lines
750 B
YAML
Raw Normal View History

2021-06-05 10:27:13 +00:00
id: sap-netweaver-info-leak
info:
name: SAP NetWeaver ICM Info page leak
author: randomstr1ng
severity: medium
description: Detection of SAP NetWeaver ABAP Webserver /public/info page
reference:
- https://www.acunetix.com/vulnerabilities/web/sap-icf-sap-public-info-sensitive-information-disclosure/
- https://github.com/Jean-Francois-C/SAP-Security-Audit
2022-07-21 18:26:52 +00:00
metadata:
max-request: 1
2022-07-21 18:26:52 +00:00
shodan-query: http.favicon.hash:-266008933
tags: sap
2021-06-05 10:27:13 +00:00
http:
2021-06-05 10:27:13 +00:00
- method: GET
path:
- "{{BaseURL}}/sap/public/info"
matchers:
- type: regex
part: body
regex:
- "RFC_SYSTEM_INFO.Response"
extractors:
- type: regex
part: body
regex:
- "<RFCDEST>.*</RFCDEST>"