2024-01-30 08:44:14 +00:00
id : node-express-dev-env
2024-01-25 09:32:41 +00:00
info :
2024-01-30 08:44:14 +00:00
name : Node.js Express NODE_ENV Development Mode
2024-01-25 09:32:41 +00:00
author : FLX
severity : medium
2024-01-30 09:54:28 +00:00
description : |
The Node.js application runs in development mode, which can expose sensitive information, such as source code and secrets, depending on the application.
2024-01-25 09:32:41 +00:00
reference :
- https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/express-development-mode-is-enabled/
- https://www.synopsys.com/blogs/software-security/nodejs-mean-stack-vulnerabilities.html
metadata :
2024-04-08 11:34:33 +00:00
verified : true
2024-06-07 10:04:29 +00:00
max-request : 2
2024-01-25 09:32:41 +00:00
shodan-query : "X-Powered-By: Express"
2024-01-30 09:53:48 +00:00
tags : nodejs,express,misconfig,devops,cicd,trace
2024-01-25 19:20:00 +00:00
flow : http(1) && http(2)
2024-01-25 09:32:41 +00:00
http :
2024-01-25 19:20:00 +00:00
- method : GET
path :
- "{{BaseURL}}"
matchers :
- type : dsl
internal : true
dsl :
- "contains(tolower(all_headers), 'x-powered-by: express')"
2024-01-25 09:32:41 +00:00
- raw :
- |
2024-01-30 08:44:14 +00:00
GET / HTTP/1.1
Host : {{Hostname}}
2024-01-25 09:32:41 +00:00
Content-Type : application/json
Connection : close
t
2024-01-30 08:44:14 +00:00
2024-01-25 09:32:41 +00:00
matchers :
- type : dsl
dsl :
2024-01-30 08:44:14 +00:00
- "status_code==400"
- "contains(body, 'SyntaxError: Unexpected token')"
- "contains(tolower(all_headers), 'x-powered-by: express')"
condition : and
2024-06-08 16:02:17 +00:00
# digest: 4a0a004730450220761fa1a9c4121ca483493ae0f6a3a69b50db15d187e827a9abf4b50a8572c34a022100f96cde03c354a2eccf0c66b00269bcd75ff853d0d477d46d37e567af15ecc577:922c64590222798bb761d5b6d8e72950