daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/http/vulnerabilities/wordpress/wordpress-debug-log.yaml

50 lines
1.1 KiB
YAML
Raw Normal View History

Create wordpress-debug-log.yaml
2020-08-30 15:41:22 +00:00
id: wp-debug-log
info:
Update wordpress-debug-log.yaml
2023-12-07 16:55:03 +00:00
name: WordPress Debug Log - Exposure
Update wordpress-debug-log.yaml 1-. Added another path 2. Added redirects and max size (sometimes it tries to download the entire file, but this flag it will only download the first 5,000 bytes). 3. Added extractor to show the size of the log.
2023-11-26 23:37:07 +00:00
author: geraldino2,dwisiswant0,philippedelteil
severity updates
2020-09-20 12:57:43 +00:00
severity: low
Updated descriptions of templates
2024-01-02 15:45:12 +00:00
description: Exposed Wordpress debug log.
Added max request counter of each template
2023-04-28 08:11:21 +00:00
metadata:
Update wordpress-debug-log.yaml
2023-12-07 16:55:03 +00:00
max-request: 4
tags: wp,wordpress,log,exposure
Create wordpress-debug-log.yaml
2020-08-30 15:41:22 +00:00
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 04:28:59 +00:00
http:
Create wordpress-debug-log.yaml
2020-08-30 15:41:22 +00:00
- method: GET
path:
Update wordpress-debug-log.yaml
2023-12-07 16:55:03 +00:00
- "{{BaseURL}}/{{paths}}/debug.log"
payloads:
paths:
- 'wp-content'
- 'wordpress'
- 'wp'
- 'blog'
fix lint
2023-11-29 13:11:38 +00:00
Update wordpress-debug-log.yaml 1-. Added another path 2. Added redirects and max size (sometimes it tries to download the entire file, but this flag it will only download the first 5,000 bytes). 3. Added extractor to show the size of the log.
2023-11-26 23:37:07 +00:00
stop-at-first-match: true
host-redirects: true
max-redirects: 3
max-size: 5000
Update wordpress-debug-log.yaml
2020-08-30 15:57:24 +00:00
matchers-condition: and
Create wordpress-debug-log.yaml
2020-08-30 15:41:22 +00:00
matchers:
- type: word
Update wordpress-debug-log.yaml
2023-12-07 16:55:03 +00:00
part: header
Create wordpress-debug-log.yaml
2020-08-30 15:41:22 +00:00
words:
- octet-stream
- text/plain
condition: or
generic improvements
2021-07-23 18:36:13 +00:00
:hammer: Add regex matcher for time_local at body
2020-08-31 10:35:45 +00:00
- type: regex
Update wordpress-debug-log.yaml
2023-12-07 16:55:03 +00:00
part: body
:hammer: Add regex matcher for time_local at body
2020-08-31 10:35:45 +00:00
regex:
- "[[0-9]{2}-[a-zA-Z]{3}-[0-9]{4} [0-9]{2}:[0-9]{2}:[0-9]{2} [A-Z]{3}] PHP"
generic improvements
2021-07-23 18:36:13 +00:00
Create wordpress-debug-log.yaml
2020-08-30 15:41:22 +00:00
- type: status
status:
templateman update
2023-10-14 11:27:55 +00:00
- 200
fix lint
2023-11-29 13:11:38 +00:00
Update wordpress-debug-log.yaml 1-. Added another path 2. Added redirects and max size (sometimes it tries to download the entire file, but this flag it will only download the first 5,000 bytes). 3. Added extractor to show the size of the log.
2023-11-26 23:37:07 +00:00
extractors:
- type: dsl
dsl:
- to_string(content_length)+ " bytes"
Auto Template Signing [Mon Jan 15 11:49:24 UTC 2024] :robot:
2024-01-15 11:49:24 +00:00
# digest: 490a00463044022028a0ab9520f3995840f37d06270d896f35a8c68056494389d4786560d16078b2022015af70691201270893eb8e9c70f755619c606a68aa07c2c78f2a85be9b4ef587:922c64590222798bb761d5b6d8e72950