From 641b2464555e222678b17ecefd7be000148ba055 Mon Sep 17 00:00:00 2001
From: YashGoti <39102999+YashGoti@users.noreply.github.com>
Date: Fri, 26 Feb 2021 11:00:21 +0530
Subject: [PATCH 1/2] Create wp-uploads.yaml

---
 miscellaneous/wp-uploads.yaml | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100644 miscellaneous/wp-uploads.yaml

diff --git a/miscellaneous/wp-uploads.yaml b/miscellaneous/wp-uploads.yaml
new file mode 100644
index 0000000000..084e959ee2
--- /dev/null
+++ b/miscellaneous/wp-uploads.yaml
@@ -0,0 +1,29 @@
+id: wp-uploads
+
+info:
+  name: WordPress Upload Directory Listing Enable
+  author: yashgoti
+  severity: info
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/wp-content/uploads/"
+      - "{{BaseURL}}/wp-content/uploads/2015/"
+      - "{{BaseURL}}/wp-content/uploads/2016/"
+      - "{{BaseURL}}/wp-content/uploads/2017/"
+      - "{{BaseURL}}/wp-content/uploads/2018/"
+      - "{{BaseURL}}/wp-content/uploads/2019/"
+      - "{{BaseURL}}/wp-content/uploads/2020/"
+      - "{{BaseURL}}/wp-content/uploads/2021/"
+      - "{BaseURL}/wp-content/uploads/cfdb7_uploads/"
+    matchers:
+      - type: word
+        words:
+          - "Directory listing for"
+          - "Index of /"
+          - "[To Parent Directory]"
+          - "Directory: /"
+      - type: status
+        status:
+          - 200

From 9d0bf90c62284d9cc5401bbe478ce9317bfcfdc3 Mon Sep 17 00:00:00 2001
From: sandeep <8293321+bauthard@users.noreply.github.com>
Date: Fri, 26 Feb 2021 11:04:18 +0530
Subject: [PATCH 2/2] misc changes

---
 miscellaneous/{wp-uploads.yaml => wp-uploads-listing.yaml} | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)
 rename miscellaneous/{wp-uploads.yaml => wp-uploads-listing.yaml} (91%)

diff --git a/miscellaneous/wp-uploads.yaml b/miscellaneous/wp-uploads-listing.yaml
similarity index 91%
rename from miscellaneous/wp-uploads.yaml
rename to miscellaneous/wp-uploads-listing.yaml
index 084e959ee2..90aa73e290 100644
--- a/miscellaneous/wp-uploads.yaml
+++ b/miscellaneous/wp-uploads-listing.yaml
@@ -1,4 +1,4 @@
-id: wp-uploads
+id: wp-uploads-listing
 
 info:
   name: WordPress Upload Directory Listing Enable
@@ -16,7 +16,8 @@ requests:
       - "{{BaseURL}}/wp-content/uploads/2019/"
       - "{{BaseURL}}/wp-content/uploads/2020/"
       - "{{BaseURL}}/wp-content/uploads/2021/"
-      - "{BaseURL}/wp-content/uploads/cfdb7_uploads/"
+
+    matchers-condition: and
     matchers:
       - type: word
         words:
@@ -24,6 +25,7 @@ requests:
           - "Index of /"
           - "[To Parent Directory]"
           - "Directory: /"
+
       - type: status
         status:
           - 200