From f8aae1f34e088e759d9cfa8d0c7edaaac876a48b Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Mon, 21 Aug 2023 23:51:58 +0530 Subject: [PATCH 1/2] Create chatgpt-web-unauth.yaml --- http/misconfiguration/chatgpt-web-unauth.yaml | 40 +++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 http/misconfiguration/chatgpt-web-unauth.yaml diff --git a/http/misconfiguration/chatgpt-web-unauth.yaml b/http/misconfiguration/chatgpt-web-unauth.yaml new file mode 100644 index 0000000000..0cf6d5662f --- /dev/null +++ b/http/misconfiguration/chatgpt-web-unauth.yaml @@ -0,0 +1,40 @@ +id: chatgpt-web-unauth + +info: + name: ChatGPT Web - Unauthorized Access + author: SleepingBag945 + severity: high + metadata: + max-request: 1 + verified: true + fofa-query: app="Chatgpt-web" + tags: chatgpt,unauth,misconfig + +http: + - raw: + - | + POST /api/session HTTP/1.1 + Host: {{Hostname}} + Accept: application/json, text/plain, */* + Content-Type: application/json + + {} + + matchers-condition: and + matchers: + - type: word + part: body + words: + - '"status":"Success"' + - '"auth":false' + - 'ChatGPTAPI' + condition: and + + - type: word + part: header + words: + - "application/json" + + - type: status + status: + - 200 From 66ec21189fad6bcd1970d60551d7062a930ff5e3 Mon Sep 17 00:00:00 2001 From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com> Date: Tue, 22 Aug 2023 16:55:36 +0530 Subject: [PATCH 2/2] updated req --- http/misconfiguration/chatgpt-web-unauth.yaml | 1 - 1 file changed, 1 deletion(-) diff --git a/http/misconfiguration/chatgpt-web-unauth.yaml b/http/misconfiguration/chatgpt-web-unauth.yaml index 0cf6d5662f..844599a764 100644 --- a/http/misconfiguration/chatgpt-web-unauth.yaml +++ b/http/misconfiguration/chatgpt-web-unauth.yaml @@ -15,7 +15,6 @@ http: - | POST /api/session HTTP/1.1 Host: {{Hostname}} - Accept: application/json, text/plain, */* Content-Type: application/json {}