From 4e5b984ab52e1761403e7d9d63ce8063a11c7f6b Mon Sep 17 00:00:00 2001
From: Geeknik Labs <466878+geeknik@users.noreply.github.com>
Date: Thu, 21 Jan 2021 14:49:05 +0000
Subject: [PATCH 1/2] Create php-fpm-status.yaml

Examples can be found at https://www.shodan.io/search?query=PHP-FPM+Status
More information can be found at https://rtcamp.com/tutorials/php/fpm-status-page/
---
 misconfiguration/php-fpm-status.yaml | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 misconfiguration/php-fpm-status.yaml

diff --git a/misconfiguration/php-fpm-status.yaml b/misconfiguration/php-fpm-status.yaml
new file mode 100644
index 0000000000..1055111c03
--- /dev/null
+++ b/misconfiguration/php-fpm-status.yaml
@@ -0,0 +1,24 @@
+id: php-fpm-status
+
+info:
+  name: PHP-FPM Status
+  author: geeknik
+  severity: info
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/status?full"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - 'pool:'
+          - 'process manager:'
+          - 'start time:'
+          - 'pid:'
+
+      - type: status
+        status:
+          - 200

From a922262352ef6d54e2a1a188c4c1c80a2e368257 Mon Sep 17 00:00:00 2001
From: PD-Team <8293321+bauthard@users.noreply.github.com>
Date: Thu, 21 Jan 2021 20:31:16 +0530
Subject: [PATCH 2/2] moving files around

---
 {exposures/logs => misconfiguration}/nginx-status.yaml          | 0
 misconfiguration/php-fpm-status.yaml                            | 2 +-
 .../configs => misconfiguration}/server-status-localhost.yaml   | 0
 3 files changed, 1 insertion(+), 1 deletion(-)
 rename {exposures/logs => misconfiguration}/nginx-status.yaml (100%)
 rename {exposures/configs => misconfiguration}/server-status-localhost.yaml (100%)

diff --git a/exposures/logs/nginx-status.yaml b/misconfiguration/nginx-status.yaml
similarity index 100%
rename from exposures/logs/nginx-status.yaml
rename to misconfiguration/nginx-status.yaml
diff --git a/misconfiguration/php-fpm-status.yaml b/misconfiguration/php-fpm-status.yaml
index 1055111c03..e4ba6f56d3 100644
--- a/misconfiguration/php-fpm-status.yaml
+++ b/misconfiguration/php-fpm-status.yaml
@@ -18,7 +18,7 @@ requests:
           - 'process manager:'
           - 'start time:'
           - 'pid:'
-
+        condition: and
       - type: status
         status:
           - 200
diff --git a/exposures/configs/server-status-localhost.yaml b/misconfiguration/server-status-localhost.yaml
similarity index 100%
rename from exposures/configs/server-status-localhost.yaml
rename to misconfiguration/server-status-localhost.yaml