diff --git a/exposed-panels/pgadmin-exposure.yaml b/exposed-panels/pgadmin-exposure.yaml new file mode 100644 index 0000000000..b9b6e07c37 --- /dev/null +++ b/exposed-panels/pgadmin-exposure.yaml @@ -0,0 +1,26 @@ +id: pgadmin-exposure +info: + name: PostgreSQL - pgAdmin Dasboard Exposure + author: princechaddha + severity: info + tags: unauth,pgadmin,postgres,panel + +requests: + - method: GET + path: + - "{{BaseURL}}/browser/" + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - "PGADMIN_LANGUAGE=" + part: header + + - type: word + words: + - "pgAdmin" + part: body