daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: exposures/configs/django-variables-exposed.yaml by mp

patch-1
MostInterestingBotInTheWorld 2023-02-05 12:42:16 -05:00
parent 6672acdc3c
commit 749fca7a01
1 changed files with 9 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
exposures/configs/django-variables-exposed.yaml
View File

@ -1,14 +1,18 @@
id: django-variables-exposed
info:
name: Exposed Django variables
name: Django Config - Detect
author: nobody
severity: info
description: Detects suspicious Django web application framework exceptions that could indicate exploitation attempts
description: Django configuration was detected, which could reveal web application framework exceptions that could indicate exploitation attempts.
reference:
- https://docs.djangoproject.com/en/1.11/ref/exceptions/
- https://docs.djangoproject.com/en/1.11/topics/logging/#django-security
- https://github.com/projectdiscovery/nuclei-templates/blob/master/file/logs/django-framework-exceptions.yaml
- https://github.com/projectdiscovery/nuclei-templates/blob/master/file/logs/django-framework-
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss-score: 5.3
cwe-id: CWE-200exceptions.yaml
metadata:
verified: true
tags: exposure,config,django
@ -45,3 +49,5 @@ requests:
- type: status
status:
- 400
# Enhanced by mp on 2023/02/05