Merge pull request #1310 from DhiyaneshGeek/master

polycom-login,sauter-login,saia-web-server,exposed-authentication.asmx
2021-04-20 14:43:25 +05:30 · 2021-04-20 14:43:25 +05:30 · 1e81dcadbd
parent 8360d05f35 a3b23a2da1
commit 1e81dcadbd
4 changed files with 96 additions and 0 deletions
--- a/exposed-panels/polycom-login.yaml
+++ b/exposed-panels/polycom-login.yaml
@ -0,0 +1,24 @@
+id: polycom-login
+
+info:
+  name: Polycom Login
+  author: DhiyaneshDk
+  severity: info
+  reference: https://www.exploit-db.com/ghdb/6863
+  tags: panel
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/login.html"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "<title>Polycom Login</title>"
+        part: body
+
+      - type: status
+        status:
+          - 200
--- a/exposed-panels/sauter-login.yaml
+++ b/exposed-panels/sauter-login.yaml
@ -0,0 +1,24 @@
+id: sauter-login
+
+info:
+  name: Sauter moduWeb - Login
+  author: DhiyaneshDk
+  severity: info
+  reference: https://www.exploit-db.com/ghdb/6883
+  tags: panel
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/?locale=en"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - <title>Sauter moduWeb - Login</title>
+        part: body
+
+      - type: status
+        status:
+          - 200
--- a/exposures/configs/exposed-authentication-asmx.yaml
+++ b/exposures/configs/exposed-authentication-asmx.yaml
@ -0,0 +1,24 @@
+id: exposed-authentication.asmx
+
+info:
+  name: Exposed Authentication.asmx
+  author: DhiyaneshDk
+  severity: low
+  reference: https://www.exploit-db.com/ghdb/6604
+  tags: config,exposure
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/_vti_bin/Authentication.asmx?op=Mode"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "Authentication Web Service"
+        part: body
+
+      - type: status
+        status:
+          - 200
--- a/exposures/configs/saia-web-server-info.yaml
+++ b/exposures/configs/saia-web-server-info.yaml
@ -0,0 +1,24 @@
+id: saia-web-server
+
+info:
+  name: Saia PCD Web-Server
+  author: DhiyaneshDk
+  severity: low
+  reference: https://www.exploit-db.com/ghdb/6865
+  tags: config,exposure
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/loadtextfile.htm#programinfo"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "<title>Saia PCD Web Server</title>"
+        part: body
+
+      - type: status
+        status:
+          - 200