From 1aadc8c0485627df3e49fb0274e4a896483c10c9 Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Sat, 4 Nov 2023 18:19:57 +0530 Subject: [PATCH] Update and rename db-command-history.yaml to mysql-history.yaml --- ...db-command-history.yaml => mysql-history.yaml} | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) rename http/misconfiguration/{db-command-history.yaml => mysql-history.yaml} (55%) diff --git a/http/misconfiguration/db-command-history.yaml b/http/misconfiguration/mysql-history.yaml similarity index 55% rename from http/misconfiguration/db-command-history.yaml rename to http/misconfiguration/mysql-history.yaml index beba271f14..1492dd9af7 100644 --- a/http/misconfiguration/db-command-history.yaml +++ b/http/misconfiguration/mysql-history.yaml @@ -1,20 +1,25 @@ -id: db-command-history +id: mysql-history info: - name: Database Command History + name: mysql History - File Disclosure author: kazet severity: low - description: Discover history for mysql + description: | + The mysql_history file is a history file used by the MySQL command-line client (mysql) to store a record of the SQL commands and statements entered by a user during their interactive MySQL sessions. It serves as a command history for the MySQL client, allowing users to recall and reuse previously executed SQL commands. + reference: + - http://doc.docs.sk/mysql-refman-5.5/mysql-history-file.html metadata: max-request: 1 - tags: misconfig + shodan-query: html:"mysql_history" + verified: true + tags: misconfig,disclosure,file,config http: - method: GET - max-redirects: 1 path: - "{{BaseURL}}/.mysql_history" + max-redirects: 1 matchers-condition: and matchers: - type: regex