Add CPE classification to templates (#9420)
* Add CPE classification to templates * misc fix * added tags * format updates * Revert "format updates" This reverts commit b93658be4b50c929d15082258e4d11a15b12cbd8. --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>patch-1
Parth Malhotra
GitHub
parent
4a051fa560
commit
45f35a27ea
|
|
@ -11,16 +11,16 @@ info:
|
|||
- https://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:3cx:3cx:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
google-query: intitle:"3CX Phone System Management Console"
|
||||
max-request: 1
|
||||
vendor: 3cx
|
||||
product: 3cx
|
||||
shodan-query:
|
||||
- http.title:"3CX Phone System Management Console"
|
||||
- http.favicon.hash:970132176
|
||||
google-query: intitle:"3CX Phone System Management Console"
|
||||
vendor: 3cx
|
||||
tags: panel,3cx
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -11,14 +11,14 @@ info:
|
|||
- https://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:3cx:3cx:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
google-query: intitle:"3CX Webclient"
|
||||
max-request: 1
|
||||
vendor: 3cx
|
||||
product: 3cx
|
||||
shodan-query: http.title:"3CX Webclient"
|
||||
google-query: intitle:"3CX Webclient"
|
||||
vendor: 3cx
|
||||
tags: panel,3cx
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,13 @@ info:
|
|||
description: ACEManager was detected. ACEManager is a configuration and diagnostic tool for the Sierra Wireless AirLink Raven modems.
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:sierrawireless:airlink_mobility_manager:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: sierrawireless
|
||||
product: airlink_mobility_manager
|
||||
fofa-query: app="ACEmanager"
|
||||
tags: panel,login,tech,acemanager
|
||||
max-request: 1
|
||||
product: airlink_mobility_manager
|
||||
vendor: sierrawireless
|
||||
tags: panel,login,tech,acemanager,sierrawireless
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -5,9 +5,9 @@ info:
|
|||
author: DhiyaneshDk
|
||||
severity: info
|
||||
metadata:
|
||||
fofa-query: body="Login @ Reporter"
|
||||
max-request: 1
|
||||
shodan-query: http.favicon.hash:-1595726841
|
||||
fofa-query: body="Login @ Reporter"
|
||||
tags: panel,login,acenet,acereporter
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,7 +9,6 @@ info:
|
|||
- https://achecker.achecks.ca/checker/index.php
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -10,10 +10,10 @@ info:
|
|||
classification:
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
shodan-query: http.title:"Acrolinx Dashboard"
|
||||
fofa-query: title=="Acrolinx Dashboard"
|
||||
google-query: inurl:"Acrolinx Dashboard"
|
||||
max-request: 1
|
||||
shodan-query: http.title:"Acrolinx Dashboard"
|
||||
tags: acrolinx,panel
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -5,10 +5,10 @@ info:
|
|||
author: DhiyaneshDk
|
||||
severity: info
|
||||
metadata:
|
||||
verified: true
|
||||
fofa-query: app="ACTi-视频监控"
|
||||
max-request: 1
|
||||
shodan-query: title:"Web Configurator" html:"ACTi"
|
||||
fofa-query: app="ACTi-视频监控"
|
||||
verified: true
|
||||
tags: acti,panel,login,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,10 +9,11 @@ info:
|
|||
- https://activeadmin.info/
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:activeadmin:activeadmin:*:*:*:*:ruby:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: activeadmin
|
||||
product: activeadmin
|
||||
vendor: activeadmin
|
||||
tags: panel,activeadmin
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,10 +9,11 @@ info:
|
|||
- https://activemq.apache.org/
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:apache:activemq:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: apache
|
||||
product: activemq
|
||||
vendor: apache
|
||||
tags: panel,activemq,apache
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,11 @@ info:
|
|||
description: Acunetix login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: title:"Acunetix"
|
||||
verified: true
|
||||
tags: panel,acunetix
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -6,9 +6,9 @@ info:
|
|||
severity: info
|
||||
description: AddOnFinance Portal Panel was detected.
|
||||
metadata:
|
||||
verified: "true"
|
||||
max-request: 1
|
||||
shodan-query: title:"AddOnFinancePortal"
|
||||
verified: "true"
|
||||
tags: panel,addon,finance,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -6,11 +6,11 @@ info:
|
|||
severity: info
|
||||
description: WS_FTP Ad Hoc panel was detected.
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: progress
|
||||
product: ws_ftp
|
||||
shodan-query: http.title:"Ad Hoc Transfer"
|
||||
vendor: progress
|
||||
verified: true
|
||||
tags: panel,wsftp,ad-hoc,detect,login,progress
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -11,10 +11,11 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
||||
cvss-score: 7.5
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:adiscon:loganalyzer:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: adiscon
|
||||
product: loganalyzer
|
||||
vendor: adiscon
|
||||
tags: adiscon,loganalyzer,syslog,exposure,panel
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,16 +9,12 @@ info:
|
|||
- https://blog.sorcery.ie/posts/adminer/
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
# <= 4.2.4 can have unauthenticated RCE via SQLite driver
|
||||
# <= 4.6.2 can have LFI via MySQL LOAD DATA LOCAL
|
||||
# Most versions have some kind of SSRF usability
|
||||
# Is generally handy if you find SQL creds
|
||||
cpe: cpe:2.3:a:adminer:adminer:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 741
|
||||
vendor: adminer
|
||||
product: adminer
|
||||
vendor: adminer
|
||||
tags: panel,fuzz,adminer,login,sqli
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,12 +9,13 @@ info:
|
|||
- https://blog.sorcery.ie/posts/adminer/
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:adminer:adminer:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 8
|
||||
vendor: adminer
|
||||
product: adminer
|
||||
shodan-query: title:"Login - Adminer"
|
||||
vendor: adminer
|
||||
verified: true
|
||||
tags: panel,adminer
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -8,8 +8,8 @@ info:
|
|||
classification:
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
fofa-query: app="AdminSet"
|
||||
max-request: 1
|
||||
reference:
|
||||
- https://github.com/guhongze/adminset/
|
||||
tags: adminset,panel
|
||||
|
|
|
|||
|
|
@ -9,11 +9,12 @@ info:
|
|||
- https://www.exploit-db.com/ghdb/6846
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:adobe:coldfusion:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 2
|
||||
vendor: adobe
|
||||
product: coldfusion
|
||||
shodan-query: http.component:"Adobe ColdFusion"
|
||||
vendor: adobe
|
||||
tags: panel,adobe,coldfusion,edb
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,10 +9,11 @@ info:
|
|||
- https://www.adobe.com/products/adobeconnect.html
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:adobe:connect:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: adobe
|
||||
product: connect
|
||||
vendor: adobe
|
||||
tags: adobe,panel,connect-central
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,11 +9,12 @@ info:
|
|||
- https://business.adobe.com/products/experience-manager/adobe-experience-manager.html
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:adobe:experience_manager:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: adobe
|
||||
product: experience_manager
|
||||
shodan-query: http.title:"AEM Sign In"
|
||||
vendor: adobe
|
||||
tags: panel,aem,adobe
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,15 +9,15 @@ info:
|
|||
- https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/Web-Content/aem2.txt
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:adobe:experience_manager:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: adobe
|
||||
product: experience_manager
|
||||
shodan-query:
|
||||
- http.title:"AEM Sign In"
|
||||
- http.component:"Adobe Experience Manager"
|
||||
vendor: adobe
|
||||
tags: panel,aem,adobe
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,15 +9,15 @@ info:
|
|||
- https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/Web-Content/aem2.txt
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:adobe:experience_manager:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: adobe
|
||||
product: experience_manager
|
||||
shodan-query:
|
||||
- http.title:"AEM Sign In"
|
||||
- http.component:"Adobe Experience Manager"
|
||||
vendor: adobe
|
||||
tags: panel,aem,adobe,sling
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,13 +7,13 @@ info:
|
|||
description: AfterLogic WebMail Login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:afterlogic:aurora:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
fofa-query: 'X-Server: AfterlogicDAVServer'
|
||||
max-request: 1
|
||||
vendor: afterlogic
|
||||
product: aurora
|
||||
fofa-query: "X-Server: AfterlogicDAVServer"
|
||||
vendor: afterlogic
|
||||
tags: panel,afterlogic,login,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,11 @@ info:
|
|||
description: airCube Dashboard login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.title:"AirCube Dashboard"
|
||||
verified: true
|
||||
tags: panel,aircube
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,11 @@ info:
|
|||
description: airCube login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.favicon.hash:1249285083
|
||||
verified: true
|
||||
tags: panel,aircube,ubiquiti
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,13 +9,13 @@ info:
|
|||
- https://airflow.apache.org/docs/apache-airflow/stable/security/webserver.html
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-668
|
||||
cpe: cpe:2.3:a:apache:airflow:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 2
|
||||
vendor: apache
|
||||
product: airflow
|
||||
shodan-query: title:"Sign In - Airflow"
|
||||
vendor: apache
|
||||
tags: panel,apache,airflow,admin
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,11 @@ info:
|
|||
description: AirNotifier login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.title:"AirNotifier"
|
||||
verified: true
|
||||
tags: panel,airnotifier
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,10 +9,11 @@ info:
|
|||
- https://techdocs.akamai.com/cloudtest/docs
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:akamai:cloudtest:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: akamai
|
||||
product: cloudtest
|
||||
vendor: akamai
|
||||
tags: panel,akamai
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,10 +9,11 @@ info:
|
|||
- https://www.alfresco.com/
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:alfresco:alfresco:*:*:*:*:android:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: alfresco
|
||||
product: alfresco
|
||||
vendor: alfresco
|
||||
tags: alfresco,tech,panel
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,15 +9,14 @@ info:
|
|||
- https://www.alliedtelesis.com/in/en
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: allied_telesis
|
||||
product: device_gui
|
||||
shodan-query: title:"Allied Telesis Device GUI"
|
||||
tags: panel,allied
|
||||
vendor: allied_telesis
|
||||
verified: true
|
||||
tags: panel,allied,allied_telesis
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -7,12 +7,12 @@ info:
|
|||
description: An Apache Ambari panel was discovered.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-668
|
||||
cpe: cpe:2.3:a:apache:ambari:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: apache
|
||||
product: ambari
|
||||
vendor: apache
|
||||
tags: panel,apache,ambari,exposure
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,12 +9,13 @@ info:
|
|||
- https://www.exploit-db.com/ghdb/7273
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:h:amcrest:ip2m-853ew:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
google-query: intext:"amcrest" "LDAP User"
|
||||
max-request: 1
|
||||
vendor: amcrest
|
||||
product: ip2m-853ew
|
||||
shodan-query: html:"amcrest"
|
||||
google-query: intext:"amcrest" "LDAP User"
|
||||
vendor: amcrest
|
||||
tags: panel,camera,amcrest,edb
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,10 +7,11 @@ info:
|
|||
description: An Ametys admin login panel was discovered.
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:ametys:ametys:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: ametys
|
||||
product: ametys
|
||||
vendor: ametys
|
||||
tags: panel,ametys,cms
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,15 +7,15 @@ info:
|
|||
description: Application Management Panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:cubecoders:amp:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: cubecoders
|
||||
product: amp
|
||||
shodan-query: title:"AMP - Application Management Panel"
|
||||
tags: panel,amp
|
||||
vendor: cubecoders
|
||||
verified: true
|
||||
tags: panel,amp,cubecoders
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -7,14 +7,14 @@ info:
|
|||
description: Ampache login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:ampache:ampache:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 3
|
||||
vendor: ampache
|
||||
product: ampache
|
||||
shodan-query: http.title:"For the Love of Music"
|
||||
vendor: ampache
|
||||
verified: true
|
||||
tags: panel,ampache
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -12,7 +12,6 @@ info:
|
|||
max-request: 1
|
||||
verified: true
|
||||
tags: panel,amprion,login,detect
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
path:
|
||||
|
|
|
|||
|
|
@ -8,12 +8,11 @@ info:
|
|||
Checks for the presence of Anaqua login page
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: title:"Anaqua User Sign On""
|
||||
verified: true
|
||||
tags: anaqua,login,panel
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -10,15 +10,15 @@ info:
|
|||
- https://docs.ansible.com/ansible-tower/latest/html/release-notes/index.html
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:redhat:ansible_tower:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
google-query: intitle:"Ansible Tower"
|
||||
max-request: 1
|
||||
vendor: redhat
|
||||
product: ansible_tower
|
||||
shodan-query: title:"Ansible Tower"
|
||||
google-query: intitle:"Ansible Tower"
|
||||
tags: panel,ansible
|
||||
vendor: redhat
|
||||
tags: panel,ansible,redhat
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -7,14 +7,14 @@ info:
|
|||
description: Apache JMeter Dashboard login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:apache:jmeter:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: apache
|
||||
product: jmeter
|
||||
shodan-query: title:"Apache JMeter Dashboard"
|
||||
vendor: apache
|
||||
verified: true
|
||||
tags: apache,jmeter,panel
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,11 +7,12 @@ info:
|
|||
description: An Apache APISIX login panel was detected.
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:apache:apisix:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: apache
|
||||
product: apisix
|
||||
fofa-query: title="Apache APISIX Dashboard"
|
||||
max-request: 1
|
||||
product: apisix
|
||||
vendor: apache
|
||||
tags: apache,apisix,panel
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,15 +7,15 @@ info:
|
|||
description: Apache Mesos panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:apache:mesos:*:*:*:*:jenkins:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
fofa-query: app="APACHE-MESOS"
|
||||
max-request: 2
|
||||
vendor: apache
|
||||
product: mesos
|
||||
shodan-query: http.title:"Mesos"
|
||||
fofa-query: app="APACHE-MESOS"
|
||||
vendor: apache
|
||||
verified: true
|
||||
tags: panel,apache,mesos
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,13 +7,13 @@ info:
|
|||
description: Apache Tomcat Manager login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 2
|
||||
vendor: apache
|
||||
product: tomcat
|
||||
shodan-query: title:"Apache Tomcat"
|
||||
vendor: apache
|
||||
tags: panel,tomcat,apache
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,9 +9,9 @@ info:
|
|||
reference:
|
||||
- https://cloud.google.com/apigee?hl=en
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.favicon.hash:"-839356603"
|
||||
verified: true
|
||||
tags: panel,apigee,login
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,14 +9,14 @@ info:
|
|||
- https://www.appsmith.com
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:appsmith:appsmith:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: appsmith
|
||||
product: appsmith
|
||||
shodan-query: http.title:"appsmith"
|
||||
vendor: appsmith
|
||||
verified: true
|
||||
tags: panel,appsmith
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,14 @@ info:
|
|||
description: Appspace is the workplace experience platform for your whole team that lets you manage it all – from employee communications to your physical office spaces.
|
||||
reference:
|
||||
- https://www.appspace.com/
|
||||
classification:
|
||||
cpe: cpe:2.3:a:appspace:appspace:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 3
|
||||
vendor: appspace
|
||||
product: appspace
|
||||
shodan-query: title:"Appspace"
|
||||
vendor: appspace
|
||||
verified: true
|
||||
tags: appspace,panel,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -4,13 +4,15 @@ info:
|
|||
name: Appsuite Login Panel - Detect
|
||||
author: DhiyaneshDK
|
||||
severity: info
|
||||
classification:
|
||||
cpe: cpe:2.3:a:open-xchange:open-xchange_appsuite:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: open-xchange
|
||||
product: open-xchange_appsuite
|
||||
shodan-query: html:"Appsuite"
|
||||
tags: panel,appsuite,detect
|
||||
vendor: open-xchange
|
||||
verified: true
|
||||
tags: panel,appsuite,detect,open-xchange
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -7,14 +7,14 @@ info:
|
|||
description: Appwrite login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:appwrite:appwrite:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 2
|
||||
vendor: appwrite
|
||||
product: appwrite
|
||||
shodan-query: http.favicon.hash:-633108100
|
||||
vendor: appwrite
|
||||
verified: true
|
||||
tags: panel,appwrite,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,7 +7,6 @@ info:
|
|||
description: Aptus login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -10,13 +10,12 @@ info:
|
|||
- https://www.aquasec.com/
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
google-query: intitle:"Aqua Cloud Native Security Platform"
|
||||
max-request: 1
|
||||
shodan-query: http.title:"Aqua Enterprise" || http.title:"Aqua Cloud Native Security Platform"
|
||||
google-query: intitle:"Aqua Cloud Native Security Platform"
|
||||
verified: true
|
||||
tags: panel,aqua,aquasec
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -8,12 +8,14 @@ info:
|
|||
ArangoDB Web Interface was detected.
|
||||
reference:
|
||||
- https://www.arangodb.com/docs/stable/
|
||||
classification:
|
||||
cpe: cpe:2.3:a:arangodb:arangodb:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: "true"
|
||||
max-request: 1
|
||||
vendor: arangodb
|
||||
product: arangodb
|
||||
shodan-query: http.title:"ArangoDB Web Interface"
|
||||
vendor: arangodb
|
||||
verified: "true"
|
||||
tags: panel,arangodb,login
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,11 +9,12 @@ info:
|
|||
- https://enterprise.arcgis.com/en/
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:esri:arcgis_enterprise:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: esri
|
||||
product: arcgis_enterprise
|
||||
tags: docs,arcgis,cms,panel
|
||||
vendor: esri
|
||||
tags: docs,arcgis,cms,panel,esri
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
@ -43,5 +44,6 @@ http:
|
|||
part: body
|
||||
group: 2
|
||||
regex:
|
||||
- '(Released Version:</strong>[\n\t ]+(([0-9]+(.[0-9]+)?(.[0-9]+)?)([\n\t ]+\([A-Za-z]+[\t ]+20[0-9][0-9]\))?))'
|
||||
- '(Released Version:</strong>[\n\t ]+(([0-9]+(.[0-9]+)?(.[0-9]+)?)([\n\t
|
||||
]+\([A-Za-z]+[\t ]+20[0-9][0-9]\))?))'
|
||||
# digest: 4a0a00473045022100e75ef14aaa920efb3f04275804e5dc93d31bb6478ffff53265f604014c63769002201f0f010c5ae3c87e8d0ec2d9fd6a14974cec6cc94ca052136230e9accf7d1009:922c64590222798bb761d5b6d8e72950
|
||||
|
|
@ -7,13 +7,15 @@ info:
|
|||
description: Check for the existence of the "/arcgis/rest/services" path on an ArcGIS server.
|
||||
reference:
|
||||
- https://enterprise.arcgis.com/en/
|
||||
classification:
|
||||
cpe: cpe:2.3:a:esri:arcgis_server:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: esri
|
||||
product: arcgis_server
|
||||
shodan-query: title:"ArcGIS"
|
||||
tags: panel,arcgis,rest,api,detect
|
||||
vendor: esri
|
||||
verified: true
|
||||
tags: panel,arcgis,rest,api,detect,esri
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -9,14 +9,14 @@ info:
|
|||
- https://archibus.com/products/
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:archibus:web_central:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 3
|
||||
vendor: archibus
|
||||
product: web_central
|
||||
shodan-query: http.favicon.hash:889652940
|
||||
vendor: archibus
|
||||
verified: true
|
||||
tags: panel,archibus
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,13 +7,15 @@ info:
|
|||
reference:
|
||||
- https://twitter.com/HunterMapping/status/1674267368359444480
|
||||
- https://github.com/mdsecactivebreach/CVE-2023-26258-ArcServe
|
||||
classification:
|
||||
cpe: cpe:2.3:a:arcserve:udp:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
fofa-query: icon_hash="-1889244460"
|
||||
max-request: 1
|
||||
vendor: arcserve
|
||||
product: udp
|
||||
shodan-query: http.favicon.hash:-1889244460
|
||||
fofa-query: icon_hash="-1889244460"
|
||||
vendor: arcserve
|
||||
verified: true
|
||||
tags: panel,login,arcserve,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,15 +7,15 @@ info:
|
|||
description: ARRIS Touchstone Telephony Modem status panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:h:commscope:dg3450:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: commscope
|
||||
product: dg3450
|
||||
shodan-query: html:"phy.htm"
|
||||
tags: panel,arris
|
||||
vendor: commscope
|
||||
verified: true
|
||||
tags: panel,arris,commscope
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -9,9 +9,9 @@ info:
|
|||
reference:
|
||||
- https://github.com/GREENHAT7/pxplan/blob/main/goby_pocs/Aspcms_Backend_Leak.json
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 2
|
||||
fofa-query: app="ASPCMS"
|
||||
max-request: 2
|
||||
verified: true
|
||||
tags: panel,login,aspcms,admin
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -8,12 +8,11 @@ info:
|
|||
ASPECT Control Panel login was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.favicon.hash:1011076161
|
||||
verified: true
|
||||
tags: panel,aspect,login
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -8,9 +8,9 @@ info:
|
|||
reference:
|
||||
- https://www.asus.com/in/content/aicloud/
|
||||
metadata:
|
||||
verified: "true"
|
||||
max-request: 1
|
||||
shodan-query: title:"AiCloud"
|
||||
verified: "true"
|
||||
tags: panel,asus,aicloud,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,11 @@ info:
|
|||
description: Asus router login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: 'Server: httpd/2.0 port:8080'
|
||||
verified: true
|
||||
tags: panel,asus,router,iot
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,15 +9,15 @@ info:
|
|||
- https://github.com/runatlantis/atlantis
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:runatlantis:atlantis:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: runatlantis
|
||||
product: atlantis
|
||||
shodan-query: http.favicon.hash:-1706783005
|
||||
tags: panel,atlantis
|
||||
vendor: runatlantis
|
||||
verified: true
|
||||
tags: panel,atlantis,runatlantis
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -9,9 +9,9 @@ info:
|
|||
reference:
|
||||
- https://www.atlassian.com/software/bamboo
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.title:"Bamboo"
|
||||
verified: true
|
||||
tags: panel,bamboo,login,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,11 +9,12 @@ info:
|
|||
- https://www.atlassian.com/
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:atlassian:crowd:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: atlassian
|
||||
product: crowd
|
||||
category: sso
|
||||
max-request: 1
|
||||
product: crowd
|
||||
vendor: atlassian
|
||||
tags: panel,atlassian
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -11,8 +11,8 @@ info:
|
|||
classification:
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
google-query: intitle:"atvise - next generation"
|
||||
max-request: 1
|
||||
tags: panel,atvise,edb
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,9 +7,9 @@ info:
|
|||
reference:
|
||||
- https://github.com/advplyr/audiobookshelf
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 2
|
||||
shodan-query: title:"Audiobookshelf"
|
||||
verified: true
|
||||
tags: panel,audiobookshelf,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,11 @@ info:
|
|||
description: AudioCodes login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.html:"Audiocodes"
|
||||
verified: true
|
||||
tags: panel,audiocodes
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -10,9 +10,9 @@ info:
|
|||
- https://github.com/authelia/authelia
|
||||
- https://www.authelia.com/
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: title:"Login - Authelia"
|
||||
verified: true
|
||||
tags: login,panel,authelia
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -10,9 +10,9 @@ info:
|
|||
- https://automatisch.io/
|
||||
- https://github.com/automatisch/automatisch
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 2
|
||||
shodan-query: title:"Automatisch"
|
||||
verified: true
|
||||
tags: panel,automatisch,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,9 +7,9 @@ info:
|
|||
reference:
|
||||
- http://autoset.net/xe/
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: title:"AutoSet"
|
||||
verified: true
|
||||
tags: tech,php,autoset,apache
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,13 +9,13 @@ info:
|
|||
- http://www.avantfax.com/
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-668
|
||||
cpe: cpe:2.3:a:avantfax:avantfax:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: avantfax
|
||||
product: avantfax
|
||||
shodan-query: http.title:"AvantFAX - Login"
|
||||
vendor: avantfax
|
||||
tags: panel,avantfax,login
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,12 @@ info:
|
|||
description: Avaya Aura Communication Manager login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:avaya:aura_communication_manager:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: avaya
|
||||
product: aura_communication_manager
|
||||
vendor: avaya
|
||||
tags: panel,avaya
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,12 @@ info:
|
|||
description: Avaya Aura System Manager login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:avaya:aura_system_manager:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: avaya
|
||||
product: aura_system_manager
|
||||
vendor: avaya
|
||||
tags: panel,avaya
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,11 +9,12 @@ info:
|
|||
- https://docs.aviatrix.com/HowTos/controller_config.html
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:aviatrix:controller:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: aviatrix
|
||||
product: controller
|
||||
shodan-query: http.title:"Aviatrix Cloud Controller"
|
||||
vendor: aviatrix
|
||||
tags: panel,aviatrix
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,14 +7,14 @@ info:
|
|||
description: Avigilon login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:avigilon:avigilon_control_center:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: avigilon
|
||||
product: avigilon_control_center
|
||||
shodan-query: http.title:"Login - Avigilon Control Center"
|
||||
vendor: avigilon
|
||||
verified: true
|
||||
tags: panel,avigilon
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,7 +9,6 @@ info:
|
|||
- http://www.avtech.com.tw
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -7,9 +7,9 @@ info:
|
|||
reference:
|
||||
- https://www.facebook.com/photo/?fbid=620605120110011&set=a.467014098802448
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: html:"AWS EC2 Auto Scaling Lab"
|
||||
verified: true
|
||||
tags: exposure,ec2,aws,amazon,panel
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,13 +9,13 @@ info:
|
|||
- https://aws.amazon.com/pt/blogs/opensource/introducing-opensearch/
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:amazon:opensearch:*:*:*:*:maven:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: amazon
|
||||
product: opensearch
|
||||
tags: panel,opensearch,aws
|
||||
vendor: amazon
|
||||
tags: panel,opensearch,aws,amazon
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -7,13 +7,12 @@ info:
|
|||
description: Axel WebServer panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
fofa-query: app="AxelWebServer"
|
||||
max-request: 1
|
||||
shodan-query: http.title:"Axel"
|
||||
fofa-query: app="AxelWebServer"
|
||||
verified: true
|
||||
tags: panel,axel,webserver
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -5,9 +5,9 @@ info:
|
|||
author: johnk3r
|
||||
severity: info
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.title:"Axway API Manager Login"
|
||||
verified: true
|
||||
tags: panel,axway,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -10,14 +10,14 @@ info:
|
|||
- https://www.axway.com/en/products/managed-file-transfer/securetransport
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:axway:securetransport:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: axway
|
||||
product: securetransport
|
||||
shodan-query: http.title:"SecureTransport" || http.favicon.hash:1330269434
|
||||
vendor: axway
|
||||
verified: true
|
||||
tags: panel,axway,securetransport
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,14 +9,14 @@ info:
|
|||
- https://www.axway.com/en/products/managed-file-transfer/securetransport
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:axway:securetransport:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: axway
|
||||
product: securetransport
|
||||
google-query: intitle:"ST Web Client"
|
||||
max-request: 1
|
||||
product: securetransport
|
||||
vendor: axway
|
||||
verified: true
|
||||
tags: panel,axway,securetransport,webclient
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -10,13 +10,14 @@ info:
|
|||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:axxonsoft:axxon_next:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: axxonsoft
|
||||
product: axxon_next
|
||||
shodan-query: title:"Axxon Next client"
|
||||
tags: panel,axxon,vms,login,detect
|
||||
vendor: axxonsoft
|
||||
verified: true
|
||||
tags: panel,axxon,vms,login,detect,axxonsoft
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
|||
|
|
@ -8,12 +8,11 @@ info:
|
|||
Laravel Backpack admin login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: title:"Backpack Admin"
|
||||
verified: true
|
||||
tags: panel,backpack,admin
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,7 +9,6 @@ info:
|
|||
- https://www.bazarr.media/
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -9,13 +9,13 @@ info:
|
|||
- https://www.bedita.com/
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:bedita:bedita:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: bedita
|
||||
product: bedita
|
||||
shodan-query: http.title:"BEdita"
|
||||
vendor: bedita
|
||||
tags: panel,bedita
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -12,12 +12,13 @@ info:
|
|||
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
||||
cvss-score: 5.3
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:beego:beego:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: beego
|
||||
product: beego
|
||||
shodan-query: html:"Beego Admin Dashboard"
|
||||
vendor: beego
|
||||
verified: true
|
||||
tags: panel,beego,unauth
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,7 +9,6 @@ info:
|
|||
- https://www.beyondtrust.com/brand
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -7,7 +7,6 @@ info:
|
|||
description: BeyondTrust login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -7,7 +7,6 @@ info:
|
|||
description: BigAnt admin login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -9,10 +9,11 @@ info:
|
|||
- https://github.com/bigbluebutton/greenlight
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:bigbluebutton:greenlight:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: bigbluebutton
|
||||
product: greenlight
|
||||
vendor: bigbluebutton
|
||||
tags: panel,bigbluebutton
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,12 +9,11 @@ info:
|
|||
- https://www.hcltechsw.com/bigfix
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
google-query: intitle:"BigFix"
|
||||
max-request: 1
|
||||
shodan-query: http.title:"BigFix"
|
||||
google-query: intitle:"BigFix"
|
||||
tags: panel,bigfix
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -12,13 +12,13 @@ info:
|
|||
- https://clouddocs.f5.com/products/big-iq/mgmt-api/v5.4/ApiReferences/bigiq_api_ref/r_auth_login.html
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: f5
|
||||
product: big-ip_access_policy_manager
|
||||
shodan-query: http.title:"BIG-IP®-+Redirect" +"Server"
|
||||
vendor: f5
|
||||
tags: panel,bigip,f5
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,12 +7,11 @@ info:
|
|||
description: BioTime Web login panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 2
|
||||
shodan-query: http.title:"BioTime"
|
||||
verified: true
|
||||
tags: panel,biotime
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,14 +7,14 @@ info:
|
|||
description: Bitdefender GravityZone panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:bitdefender:gravityzone:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: bitdefender
|
||||
product: gravityzone
|
||||
shodan-query: title:"Bitdefender GravityZone"
|
||||
vendor: bitdefender
|
||||
verified: true
|
||||
tags: panel,bitdefender
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -7,10 +7,11 @@ info:
|
|||
description: Bitrix24 is a unified work space that places a complete set of business tools into a single, intuitive interface.
|
||||
classification:
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:bitrix:bitrix24:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: bitrix
|
||||
product: bitrix24
|
||||
vendor: bitrix
|
||||
tags: panel,bitrix,login
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -6,12 +6,14 @@ info:
|
|||
severity: info
|
||||
reference:
|
||||
- https://bitwarden.com/?utm_source=google&utm_medium=cpc&utm_campaign=AW_ALL_NU_CL_Bitwarden_en_GSN_DTMB_Brand-Login_KW:Brand-Login_Consolidated&utm_content=646427936792&utm_term=bitwarden%20vault%20login|kwd-826827349840&hsa_acc=2567950947&hsa_cam=19621984700&hsa_grp=145977914135&hsa_ad=646427936792&hsa_src=g&hsa_tgt=kwd-826827349840&hsa_kw=bitwarden%20vault%20login&hsa_mt=e&hsa_net=adwords&hsa_ver=3&gad=1&gclid=Cj0KCQjwpompBhDZARIsAFD_Fp-07Mni-xzuKd5Ewi6I7qzRTdZOYSxMsMVvKVWhGm5qg2KUiY2Z7SQaAvSIEALw_wcB
|
||||
classification:
|
||||
cpe: cpe:2.3:a:bitwarden:bitwarden:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
vendor: bitwarden
|
||||
product: bitwarden
|
||||
shodan-query: title:"Bitwarden Web Vault"
|
||||
vendor: bitwarden
|
||||
verified: true
|
||||
tags: panel,bitwarden,vault,detect
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -11,12 +11,11 @@ info:
|
|||
- https://www.synopsys.com/software-integrity/security-testing/software-composition-analysis.html
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.title:"Black Duck"
|
||||
verified: true
|
||||
tags: panel,blackduck,synopsys
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -4,12 +4,14 @@ info:
|
|||
name: bloofoxCMS Login Panel - Detect
|
||||
author: theamanrawat
|
||||
severity: info
|
||||
classification:
|
||||
cpe: cpe:2.3:a:bloofox:bloofoxcms:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
verified: "true"
|
||||
fofa-query: Powered by bloofoxCMS
|
||||
max-request: 2
|
||||
vendor: bloofox
|
||||
product: bloofoxcms
|
||||
fofa-query: "Powered by bloofoxCMS"
|
||||
vendor: bloofox
|
||||
verified: "true"
|
||||
tags: panel,bloofox,cms
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -10,7 +10,6 @@ info:
|
|||
- https://blueirissoftware.com/
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -7,7 +7,6 @@ info:
|
|||
description: BMC Discovery Outpost admin panel was detected.
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
|
|
|
|||
|
|
@ -9,12 +9,11 @@ info:
|
|||
- https://docs.bmc.com/docs/discovery/documentation-home-1098837931.html
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
shodan-query: http.title:"BMC Software"
|
||||
verified: true
|
||||
tags: panel,bmc
|
||||
|
||||
http:
|
||||
|
|
|
|||
|
|
@ -9,13 +9,13 @@ info:
|
|||
- https://github.com/bolt/bolt
|
||||
classification:
|
||||
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
||||
cvss-score: 0
|
||||
cwe-id: CWE-200
|
||||
cpe: cpe:2.3:a:boltcms:bolt:*:*:*:*:*:*:*:*
|
||||
metadata:
|
||||
max-request: 1
|
||||
vendor: boltcms
|
||||
product: bolt
|
||||
tags: panel,bolt,cms,login
|
||||
vendor: boltcms
|
||||
tags: panel,bolt,cms,login,boltcms
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
@ -37,7 +37,8 @@ http:
|
|||
- '<script src="/app/view/js/bolt.js"></script>'
|
||||
- '<script src="/app/view/js/bolt.min.js"'
|
||||
- '<script src="/assets/bolt.js"></script>'
|
||||
- 'Bolt requires JavaScript to function properly and continuing without it might corrupt or erase data.'
|
||||
- 'Bolt requires JavaScript to function properly and continuing without
|
||||
it might corrupt or erase data.'
|
||||
- 'Bolt » Login'
|
||||
- 'Cookies are required to log on to Bolt. Please allow cookies.'
|
||||
|
||||
|
|
|
|||
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue