nuclei-templates/http/misconfiguration/installer/facturascripts-installer.yaml

41 lines
1.1 KiB
YAML
Raw Normal View History

2022-10-26 21:36:39 +00:00
id: facturascripts-installer
info:
2022-10-28 05:29:53 +00:00
name: FacturaScripts Installer Exposure
2022-10-26 21:36:39 +00:00
author: DhiyaneshDk
severity: high
2023-12-21 09:19:34 +00:00
description: FacturaScripts is susceptible to the Installation page exposure due to misconfiguration.
2022-10-26 21:36:39 +00:00
metadata:
verified: true
2023-10-14 11:27:55 +00:00
max-request: 1
2022-10-26 21:36:39 +00:00
shodan-query: html:"FacturaScripts installer"
2024-09-10 08:22:50 +00:00
product: facturascripts
vendor: facturascripts
2022-10-26 21:36:39 +00:00
tags: misconfig,facturascripts,install,exposure
2024-09-10 08:22:50 +00:00
classification:
cpe: cpe:2.3:a:facturascripts:facturascripts:*:*:*:*:*:*:*:*
http:
2022-10-26 21:36:39 +00:00
- method: GET
path:
- '{{BaseURL}}'
matchers-condition: and
matchers:
- type: word
part: body
words:
- 'FacturaScripts installer'
- 'connect to the database'
condition: and
- type: word
part: header
words:
- 'text/html'
- type: status
status:
- 200
2024-09-10 08:22:50 +00:00
# digest: 490a00463044022020a08dcfce34df1143ae7a6029f76d9ed4bfacb7ccd2b01245cd8d743ea3d5eb02203a4aafed8bb6675ad3e181378c7c97bd17bd89e04b723442658dd6d346e5ebbf:922c64590222798bb761d5b6d8e72950