From 9420647708373b7d612d1c1ff769a6702f0dd79f Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Mon, 8 Aug 2022 13:16:21 +0530 Subject: [PATCH 1/2] Create oracle-test-cgi.yaml --- exposures/files/oracle-test-cgi.yaml | 31 ++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 exposures/files/oracle-test-cgi.yaml diff --git a/exposures/files/oracle-test-cgi.yaml b/exposures/files/oracle-test-cgi.yaml new file mode 100644 index 0000000000..4993b4b4c4 --- /dev/null +++ b/exposures/files/oracle-test-cgi.yaml @@ -0,0 +1,31 @@ +id: oracle-test-cgi + +info: + name: Oracle Application Server test-cgi Page + author: DhiyaneshDk + severity: low + metadata: + verified: true + shodan-query: title:"Oracle Application Server" + tags: oracle,exposure + +requests: + - method: GET + path: + - "{{BaseURL}}/cgi-bin/test-cgi" + + matchers-condition: and + matchers: + - type: word + words: + - "SERVER_SOFTWARE" + part: body + + - type: word + words: + - "text/plain" + part: header + + - type: status + status: + - 200 From d9b2bb5ca38561560ef70973fef4eac9ccfb6b62 Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Mon, 8 Aug 2022 13:31:28 -0700 Subject: [PATCH 2/2] Update oracle-test-cgi.yaml --- exposures/files/oracle-test-cgi.yaml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/exposures/files/oracle-test-cgi.yaml b/exposures/files/oracle-test-cgi.yaml index 4993b4b4c4..85761208f1 100644 --- a/exposures/files/oracle-test-cgi.yaml +++ b/exposures/files/oracle-test-cgi.yaml @@ -3,7 +3,7 @@ id: oracle-test-cgi info: name: Oracle Application Server test-cgi Page author: DhiyaneshDk - severity: low + severity: info metadata: verified: true shodan-query: title:"Oracle Application Server" @@ -17,14 +17,14 @@ requests: matchers-condition: and matchers: - type: word - words: - - "SERVER_SOFTWARE" part: body + words: + - "SERVER_SOFTWARE =" - type: word + part: header words: - "text/plain" - part: header - type: status status: