From 68c7a957b4410f7a51d375f7fbd3fad02a4869ab Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Wed, 24 Feb 2021 12:05:37 +0530
Subject: [PATCH] Create java-melody-exposed.yaml

---
 misconfiguration/java-melody-exposed.yaml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 misconfiguration/java-melody-exposed.yaml

diff --git a/misconfiguration/java-melody-exposed.yaml b/misconfiguration/java-melody-exposed.yaml
new file mode 100644
index 0000000000..7b4b953f01
--- /dev/null
+++ b/misconfiguration/java-melody-exposed.yaml
@@ -0,0 +1,18 @@
+id: java-melody-exposed
+
+info:
+  name: JavaMelody Monitoring Exposed
+  author: dhiyaneshDK
+  severity: Medium
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}'
+      - '{{BaseURL}}/monitoring'
+      - '{{BaseURL}}/..%3B/monitoring'
+
+    matchers:
+      - type: word
+        words:
+          - 'Monitoring JavaMelody on'