From 1c1186e4dac2b6bba8a6dec5abe2a04eca1ec603 Mon Sep 17 00:00:00 2001
From: pussycat0x <65701233+pussycat0x@users.noreply.github.com>
Date: Tue, 22 Jun 2021 20:39:40 +0530
Subject: [PATCH] Add files via upload

---
 vulnerabilities/other/ALFA_DATA.yaml | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 vulnerabilities/other/ALFA_DATA.yaml

diff --git a/vulnerabilities/other/ALFA_DATA.yaml b/vulnerabilities/other/ALFA_DATA.yaml
new file mode 100644
index 0000000000..16829808d6
--- /dev/null
+++ b/vulnerabilities/other/ALFA_DATA.yaml
@@ -0,0 +1,25 @@
+id: alfacgiapi-wordpress
+info:
+  name: alfacgiapi
+  author: pussycat0x
+  severity: low
+  description: Searches for sensitive directories present in the ALFA_DATA.
+  reference: https://www.exploit-db.com/ghdb/6999
+  tags: wordpress,listing
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/wp-includes/ALFA_DATA/"
+      - "{{BaseURL}}/wp-content/uploads/alm_templates/ALFA_DATA/alfacgiapi/"
+      - "{{BaseURL}}/ALFA_DATA/alfacgiapi/"
+      - "{{BaseURL}}/cgi-bin/ALFA_DATA/alfacgiapi/"
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "Index of"
+          - "/wp-content/plugins/"
+          - "/wp-includes/ALFA_DATA/"
+      - type: status
+        status:
+          - 200
\ No newline at end of file