nuclei-templates/exposures/configs/alibaba-canal-info-leak.yaml

43 lines
1.0 KiB
YAML
Raw Normal View History

2021-01-30 05:32:29 +00:00
id: alibaba-canal-info-leak
2021-01-30 00:54:16 +00:00
info:
name: Alibaba Canal Config - Detect
2021-01-30 00:54:16 +00:00
author: pikpikcu
severity: info
description: Alibaba Canal configuration information was detected.
reference:
- https://github.com/alibaba/canal/issues/632
- https://netty.io/wiki/reference-counted-objects.html
- https://my.oschina.net/u/4581879/blog/4753320
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: config,exposure,alibaba
2021-01-30 00:54:16 +00:00
requests:
- method: GET
path:
- "{{BaseURL}}/api/v1/canal/config/1/1"
headers:
Content-Type: application/json
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- "application/json"
condition: and
part: header
- type: word
words:
- "ncanal.aliyun.accessKey"
- "ncanal.aliyun.secretKey"
condition: and
part: body
# Enhanced by mp on 2023/02/05