From 4cfc605eaba773e7a844f56bcb2a25068007898b Mon Sep 17 00:00:00 2001 From: Vikas Gupta Date: Fri, 22 Dec 2023 15:14:59 +0530 Subject: [PATCH] Description Added --- http/exposures/configs/blazor-boot.yaml | 1 + http/exposures/configs/collibra-properties.yaml | 1 + http/exposures/configs/config-properties.yaml | 1 + http/exposures/configs/github-workflows-disclosure.yaml | 1 + http/exposures/configs/jkstatus-manager.yaml | 3 +++ http/exposures/configs/jsconfig-json.yaml | 1 + http/exposures/configs/phinx-config.yaml | 1 + http/exposures/configs/wpconfig-aws-keys.yaml | 1 + http/exposures/configs/yii-debugger.yaml | 1 + http/exposures/configs/zend-config-file.yaml | 1 + 10 files changed, 12 insertions(+) diff --git a/http/exposures/configs/blazor-boot.yaml b/http/exposures/configs/blazor-boot.yaml index 53b64262c8..88b65068fc 100644 --- a/http/exposures/configs/blazor-boot.yaml +++ b/http/exposures/configs/blazor-boot.yaml @@ -4,6 +4,7 @@ info: name: Blazor Boot File Disclosure author: freakyclown severity: info + description: Exposed Blazor Boot (a web framework developed by Microsoft) config file. reference: - https://github.com/freakyclown/Nuclei_templates/blob/main/blazor_server.yaml metadata: diff --git a/http/exposures/configs/collibra-properties.yaml b/http/exposures/configs/collibra-properties.yaml index d24168fbc9..17326caaac 100644 --- a/http/exposures/configs/collibra-properties.yaml +++ b/http/exposures/configs/collibra-properties.yaml @@ -4,6 +4,7 @@ info: name: Collibra Properties Exposure author: 0xPugazh severity: high + description: Detected expoed Collibra Properties. reference: - https://twitter.com/shaybt12/status/1662431219223605254 metadata: diff --git a/http/exposures/configs/config-properties.yaml b/http/exposures/configs/config-properties.yaml index b5dd23c891..9326a352c9 100644 --- a/http/exposures/configs/config-properties.yaml +++ b/http/exposures/configs/config-properties.yaml @@ -4,6 +4,7 @@ info: name: Config Properties Exposure author: j4vaovo,DhiyaneshDK severity: high + description: Config Properties were exposed. reference: - https://twitter.com/win3zz/status/1657624974851702784/photo/1 metadata: diff --git a/http/exposures/configs/github-workflows-disclosure.yaml b/http/exposures/configs/github-workflows-disclosure.yaml index 6c10dfc9e6..04cbadf3c4 100644 --- a/http/exposures/configs/github-workflows-disclosure.yaml +++ b/http/exposures/configs/github-workflows-disclosure.yaml @@ -4,6 +4,7 @@ info: name: Github Workflow Disclosure author: dhiyaneshDk,geeknik severity: medium + description: Github Workflow was exposed. reference: - https://github.com/detectify/ugly-duckling/blob/master/modules/crowdsourced/github-workflows-disclosure.json metadata: diff --git a/http/exposures/configs/jkstatus-manager.yaml b/http/exposures/configs/jkstatus-manager.yaml index c3a1f4b740..8b5a0cf292 100644 --- a/http/exposures/configs/jkstatus-manager.yaml +++ b/http/exposures/configs/jkstatus-manager.yaml @@ -4,6 +4,9 @@ info: name: JK Status Manager - Detect author: pdteam,DhiyaneshDk severity: low + description: Exposed JKStatus manager which is a web-based tool that allows administrators to monitor and manage the connections between the Apache HTTP Server and the Tomcat application server. + + reference: - https://github.com/PortSwigger/j2ee-scan/blob/master/src/main/java/burp/j2ee/issues/impl/JKStatus.java metadata: diff --git a/http/exposures/configs/jsconfig-json.yaml b/http/exposures/configs/jsconfig-json.yaml index e42be668f6..d2aeb2dbf4 100644 --- a/http/exposures/configs/jsconfig-json.yaml +++ b/http/exposures/configs/jsconfig-json.yaml @@ -4,6 +4,7 @@ info: name: Visual Studio Code jsconfig.json - Detect author: DhiyaneshDk severity: info + description: Visual Studio Code jsconfig.json was detected. reference: - https://code.visualstudio.com/docs/languages/jsconfig metadata: diff --git a/http/exposures/configs/phinx-config.yaml b/http/exposures/configs/phinx-config.yaml index 0aae5a3e20..79fb9e1cc9 100644 --- a/http/exposures/configs/phinx-config.yaml +++ b/http/exposures/configs/phinx-config.yaml @@ -4,6 +4,7 @@ info: name: Phinx Configuration Exposure author: DhiyaneshDk severity: medium + description: Phinx configuration file was exposed. reference: - https://book.cakephp.org/phinx/0/en/configuration.html - https://github.com/cakephp/phinx diff --git a/http/exposures/configs/wpconfig-aws-keys.yaml b/http/exposures/configs/wpconfig-aws-keys.yaml index b8ff924077..c68fa5f5ec 100644 --- a/http/exposures/configs/wpconfig-aws-keys.yaml +++ b/http/exposures/configs/wpconfig-aws-keys.yaml @@ -4,6 +4,7 @@ info: name: AWS S3 keys Leak author: r12w4n severity: high + description: AWS S3 keys are exposed. metadata: max-request: 2 tags: aws,s3,wordpress,disclosure,exposure diff --git a/http/exposures/configs/yii-debugger.yaml b/http/exposures/configs/yii-debugger.yaml index 7af4907268..73bfc11ea4 100644 --- a/http/exposures/configs/yii-debugger.yaml +++ b/http/exposures/configs/yii-debugger.yaml @@ -4,6 +4,7 @@ info: name: View Yii Debugger Information author: geeknik,rumble773 severity: low + description: Detects potential exposure to Yii Debugger information. reference: - https://yii2-framework.readthedocs.io/en/stable/guide/tool-debugger/ metadata: diff --git a/http/exposures/configs/zend-config-file.yaml b/http/exposures/configs/zend-config-file.yaml index adb7b0be67..d88239c8ce 100644 --- a/http/exposures/configs/zend-config-file.yaml +++ b/http/exposures/configs/zend-config-file.yaml @@ -4,6 +4,7 @@ info: name: Zend Configuration File author: pdteam,geeknik,Akokonunes severity: high + description: Zend configuration file was exposed. metadata: max-request: 13 tags: config,exposure,zend,php