2021-06-05 10:27:13 +00:00
|
|
|
id: sap-netweaver-info-leak
|
|
|
|
|
|
|
|
info:
|
|
|
|
name: SAP NetWeaver ICM Info page leak
|
|
|
|
author: randomstr1ng
|
|
|
|
severity: medium
|
2022-04-22 10:38:41 +00:00
|
|
|
description: Detection of SAP NetWeaver ABAP Webserver /public/info page
|
2021-08-18 11:37:49 +00:00
|
|
|
reference:
|
2021-08-19 14:44:46 +00:00
|
|
|
- https://www.acunetix.com/vulnerabilities/web/sap-icf-sap-public-info-sensitive-information-disclosure/
|
|
|
|
- https://github.com/Jean-Francois-C/SAP-Security-Audit
|
2022-04-22 10:38:41 +00:00
|
|
|
tags: sap
|
2021-06-05 10:27:13 +00:00
|
|
|
|
|
|
|
requests:
|
|
|
|
- method: GET
|
|
|
|
path:
|
|
|
|
- "{{BaseURL}}/sap/public/info"
|
|
|
|
|
|
|
|
matchers:
|
|
|
|
- type: regex
|
|
|
|
part: body
|
|
|
|
regex:
|
|
|
|
- "RFC_SYSTEM_INFO.Response"
|
|
|
|
|
|
|
|
extractors:
|
|
|
|
- type: regex
|
|
|
|
part: body
|
|
|
|
regex:
|
|
|
|
- "<RFCDEST>.*</RFCDEST>"
|