daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Dashboard Content Enhancements (#6181) 

Dashboard Content Enhancements
patch-1
MostInterestingBotInTheWorld 2022-11-29 09:52:46 -05:00 committed by GitHub
parent 60975d8fff
commit 8836a4d9b6
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
37 changed files with 298 additions and 49 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
exposed-panels/apache-jmeter-dashboard.yaml
View File

@ -1,9 +1,14 @@
id: apache-jmeter-dashboard id: apache-jmeter-dashboard
info: info:
name: Apache JMeter Dashboard name: Apache JMeter Dashboard Login Panel - Detect
author: tess author: tess
severity: low severity: low
description: Apache JMeter Dashboard login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: title:"Apache JMeter Dashboard" shodan-query: title:"Apache JMeter Dashboard"
@ -26,3 +31,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

8
exposed-panels/apache/public-tomcat-manager.yaml
View File

@ -1,11 +1,13 @@
id: public-tomcat-manager id: public-tomcat-manager
info: info:
name: Apache Tomcat Manager Disclosure name: Apache Tomcat Manager Login Panel - Detect
author: Ahmed Sherif,geeknik,sinKettu author: Ahmed Sherif,geeknik,sinKettu
severity: info severity: info
description: An Apache Tomcat Manager panel was discovered. description: Apache Tomcat Manager login panel was detected.
classification: classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200 cwe-id: CWE-200
metadata: metadata:
shodan-query: title:"Apache Tomcat" shodan-query: title:"Apache Tomcat"
@ -30,3 +32,5 @@ requests:
- 401 - 401
- 200 - 200
condition: or condition: or
# Enhanced by md on 2022/11/28

9
exposed-panels/dplus-dashboard.yaml
View File

@ -1,9 +1,14 @@
id: dplus-dashboard id: dplus-dashboard
info: info:
name: DPLUS Dashboard Exposure name: DPLUS Dashboard Panel - Detect
author: tess author: tess
severity: info severity: info
description: DPLUS Dashboard panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: title:"DPLUS Dashboard" shodan-query: title:"DPLUS Dashboard"
@ -27,3 +32,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/fastpanel-hosting-control-panel.yaml
View File

@ -1,9 +1,14 @@
id: fastpanel-hosting-control-panel id: fastpanel-hosting-control-panel
info: info:
name: Fastpanel Hosting Control Panel name: FASTPANEL Login Panel - Detect
author: pikpikcu author: pikpikcu
severity: info severity: info
description: FASTPANEL login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: title:"FASTPANEL HOSTING CONTROL" shodan-query: title:"FASTPANEL HOSTING CONTROL"
@ -24,3 +29,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/lacie-panel.yaml
View File

@ -1,11 +1,16 @@
id: lacie-panel id: lacie-panel
info: info:
name: LaCie Login Panel name: LaCie Login Panel - Detect
author: dhiyaneshDK author: dhiyaneshDK
severity: info severity: info
description: LaCie login panel was detected.
reference: reference:
- https://www.exploit-db.com/ghdb/7118 - https://www.exploit-db.com/ghdb/7118
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,lacie,login,edb tags: panel,lacie,login,edb
requests: requests:
@ -29,3 +34,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/lancom-router-panel.yaml
View File

@ -1,9 +1,14 @@
id: lancom-router-panel id: lancom-router-panel
info: info:
name: Lancom Router Panel name: Lancom Router Login Panel - Detect
author: __Fazal,daffainfo author: __Fazal,daffainfo
severity: info severity: info
description: Lancom router login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: "true" verified: "true"
shodan-query: html:"LANCOM Systems GmbH" shodan-query: html:"LANCOM Systems GmbH"
@ -26,3 +31,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

11
exposed-panels/landrayoa-panel.yaml
View File

@ -1,9 +1,14 @@
id: landrayoa-panel id: landrayoa-panel
info: info:
name: LandrayOA Panel Login name: Landray Login Panel - Detect
author: YanYun author: YanYun
severity: info severity: info
description: Landray login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,landrayoa tags: panel,landrayoa
requests: requests:
@ -27,4 +32,6 @@ requests:
- type: word - type: word
words: words:
- 'isopen=' - 'isopen='
part: header part: header
# Enhanced by md on 2022/11/28

9
exposed-panels/lansweeper-login.yaml
View File

@ -1,9 +1,14 @@
id: lansweeper-login id: lansweeper-login
info: info:
name: Lansweeper Login name: Lansweeper Login Panel - Detect
author: divya_mudgal author: divya_mudgal
severity: info severity: info
description: Lansweeper login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: title:"Lansweeper - Login" shodan-query: title:"Lansweeper - Login"
@ -31,3 +36,5 @@ requests:
group: 1 group: 1
regex: regex:
- '"\/js\/CustomControls\.js\?([0-9.]+)" type="text\/javascript"' - '"\/js\/CustomControls\.js\?([0-9.]+)" type="text\/javascript"'
# Enhanced by md on 2022/11/28

9
exposed-panels/lantronix-webmanager-panel.yaml
View File

@ -1,9 +1,14 @@
id: lantronix-webmanager-panel id: lantronix-webmanager-panel
info: info:
name: Lantronix WEB-Manager Panel name: Lantronix Web Manager Login Panel- Detect
author: princechaddha author: princechaddha
severity: info severity: info
description: Lantronix Web Manager login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,lantronix tags: panel,lantronix
requests: requests:
@ -29,3 +34,5 @@ requests:
group: 1 group: 1
regex: regex:
- ">Version ([0-9.]+)</font>" - ">Version ([0-9.]+)</font>"
# Enhanced by md on 2022/11/28

9
exposed-panels/lenovo-thinkserver-panel.yaml
View File

@ -1,9 +1,14 @@
id: lenovo-thinkserver-panel id: lenovo-thinkserver-panel
info: info:
name: Lenovo ThinkServer System Manager Panel Detect name: Lenovo ThinkServer System Manager Login Panel - Detect
author: princechaddha author: princechaddha
severity: info severity: info
description: Lenovo ThinkServer System Manager login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,thinkserver,lenovo tags: panel,thinkserver,lenovo
requests: requests:
@ -21,3 +26,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/leostream-panel.yaml
View File

@ -1,11 +1,16 @@
id: leostream-panel id: leostream-panel
info: info:
name: Leostream Panel Detect name: Leostream Login Panel - Detect
author: praetorian-thendrickson author: praetorian-thendrickson
severity: info severity: info
description: Leostream login panel was detected.
reference: reference:
- https://leostream.com - https://leostream.com
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
shodan-query: http.title:"Leostream" shodan-query: http.title:"Leostream"
tags: panel,leostream tags: panel,leostream
@ -24,3 +29,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/librenms-login.yaml
View File

@ -1,9 +1,14 @@
id: librenms-login id: librenms-login
info: info:
name: LibreNMS Login Panel name: LibreNMS Login Panel - Detect
author: pikpikcu author: pikpikcu
severity: info severity: info
description: LibreNMS login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
fofa-query: title="librenms" fofa-query: title="librenms"
tags: librenms,panel tags: librenms,panel
@ -23,3 +28,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/liferay-portal.yaml
View File

@ -1,12 +1,17 @@
id: liferay-portal id: liferay-portal
info: info:
name: Liferay Portal Detect name: Liferay Login Panel - Detect
author: organiccrap,dwisiswant0,ricardomaia author: organiccrap,dwisiswant0,ricardomaia
severity: info severity: info
description: Liferay login panel was detected,
reference: reference:
- https://www.liferay.com/ - https://www.liferay.com/
- https://github.com/mzer0one/CVE-2020-7961-POC - https://github.com/mzer0one/CVE-2020-7961-POC
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.favicon.hash:129457226 shodan-query: http.favicon.hash:129457226
@ -43,3 +48,5 @@ requests:
group: 2 group: 2
regex: regex:
- '(i?)Liferay-Portal:.*?(\d+\.?.*?)\s' - '(i?)Liferay-Portal:.*?(\d+\.?.*?)\s'
# Enhanced by md on 2022/11/28

10
exposed-panels/linkerd-panel.yaml
View File

@ -1,11 +1,15 @@
id: linkerd-panel id: linkerd-panel
info: info:
name: Linkered Panel Exposure name: Linkerd Panel - Detect
author: tess author: tess
severity: high severity: high
description: | description: |
Linkerd is a service mesh for Kubernetes. It makes running services easier and safer by giving you runtime debugging, observability, reliability, and security—all without requiring any changes to your code. Linkerd panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: html:"data-controller-namespace" shodan-query: html:"data-controller-namespace"
@ -33,3 +37,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/linksys-wifi-login.yaml
View File

@ -1,9 +1,14 @@
id: linksys-wifi-login id: linksys-wifi-login
info: info:
name: Linksys Smart Wi-Fi name: Linksys Smart Wi-Fi Login Panel - Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
description: Linksys Smart Wi-Fi login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
shodan-dork: http.title:"Linksys Smart WI-FI" shodan-dork: http.title:"Linksys Smart WI-FI"
tags: tech,panel,linksys,iot tags: tech,panel,linksys,iot
@ -26,3 +31,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/livehelperchat-admin-panel.yaml
View File

@ -1,9 +1,14 @@
id: livehelperchat-admin-panel id: livehelperchat-admin-panel
info: info:
name: Live Helper Chat Admin Panel name: Live Helper Chat Admin Login Panel - Detect
author: ritikchaddha author: ritikchaddha
severity: info severity: info
description: Live Helper Chat admin login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: title:"Live Helper Chat" shodan-query: title:"Live Helper Chat"
@ -27,3 +32,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/livezilla-login-panel.yaml
View File

@ -1,9 +1,14 @@
id: livezilla-login-panel id: livezilla-login-panel
info: info:
name: Livezilla login detect name: LiveZilla Login Panel - Detect
author: __Fazal author: __Fazal
severity: info severity: info
description: LiveZilla login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,livezilla,login tags: panel,livezilla,login
requests: requests:
@ -20,3 +25,5 @@ requests:
- type: word - type: word
words: words:
- 'LiveZilla' - 'LiveZilla'
# Enhanced by md on 2022/11/28

9
exposed-panels/logitech-harmony-portal.yaml
View File

@ -1,9 +1,14 @@
id: logitech-harmony-portal id: logitech-harmony-portal
info: info:
name: Logitech Harmony Pro Installer Portal name: Logitech Harmony Pro Installer Portal Login Panel - Detect
author: ritikchaddha author: ritikchaddha
severity: info severity: info
description: Logitech Harmony Pro Installer Portal login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.title:"Logitech Harmony Pro Installer" shodan-query: http.title:"Logitech Harmony Pro Installer"
@ -24,3 +29,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/looker-panel.yaml
View File

@ -1,9 +1,14 @@
id: looker-panel id: looker-panel
info: info:
name: Looker Login Panel name: Looker Login Panel - Detect
author: ritikchaddha,daffainfo author: ritikchaddha,daffainfo
severity: info severity: info
description: Looker login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan: http.html:"lookerVersion" shodan: http.html:"lookerVersion"
@ -32,3 +37,5 @@ requests:
group: 1 group: 1
regex: regex:
- "lookerVersion: '([0-9.]+)'," - "lookerVersion: '([0-9.]+)',"
# Enhanced by md on 2022/11/28

9
exposed-panels/lucee-login.yaml
View File

@ -1,9 +1,14 @@
id: lucee-login id: lucee-login
info: info:
name: Lucee Web/Server Administrator Login name: Lucee Web and Lucee Server Admin Login Panel - Detect
author: dhiyaneshDK author: dhiyaneshDK
severity: info severity: info
description: Lucee admin login panels were detected in both Web and Server tabs.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
shodan-query: http.title:"Lucee" shodan-query: http.title:"Lucee"
tags: panel,lucee tags: panel,lucee
@ -23,3 +28,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/maestro-login-panel.yaml
View File

@ -1,9 +1,14 @@
id: maestro-login-panel id: maestro-login-panel
info: info:
name: Maestro - LuCI Login Panel name: Maestro LuCI Login Panel - Detect
author: tess author: tess
severity: info severity: info
description: Maestro LuCI login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-dork: http.title:"Maestro - LuCI" shodan-dork: http.title:"Maestro - LuCI"
@ -28,3 +33,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

11
exposed-panels/magento-admin-panel.yaml
View File

@ -1,14 +1,17 @@
id: magento-admin-panel id: magento-admin-panel
info: info:
name: Exposed Magento Admin Panel name: Magento Admin Login Panel - Detect
author: TechbrunchFR,ritikchaddha author: TechbrunchFR,ritikchaddha
severity: info severity: info
description: | description: |
As a security best practice, Magento recommends that you use a unique, custom Admin URL instead of the default admin or a common term such as backend. Although it will not directly protect your site Magento admin login panel was detected.
from a determined bad actor, it can reduce exposure to scripts that try to gain unauthorized access.
reference: reference:
- https://docs.magento.com/user-guide/stores/store-urls-custom-admin.html - https://docs.magento.com/user-guide/stores/store-urls-custom-admin.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.component:"Magento" shodan-query: http.component:"Magento"
@ -30,3 +33,5 @@ requests:
- "Magento" - "Magento"
- "Admin Panel" - "Admin Panel"
condition: and condition: and
# Enhanced by md on 2022/11/28

10
exposed-panels/mailhog-panel.yaml
View File

@ -1,13 +1,17 @@
id: mailhog-panel id: mailhog-panel
info: info:
name: MailHog Panel Detect name: MailHog Panel - Detect
author: kh4sh3i author: kh4sh3i
severity: info severity: info
description: | description: |
MailHog is an email testing tool for developers MailHog panel was detected.
reference: reference:
- https://github.com/mailhog/MailHog - https://github.com/mailhog/MailHog
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.html:"mailhog" shodan-query: http.html:"mailhog"
@ -30,3 +34,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/mailwatch-login.yaml
View File

@ -1,9 +1,14 @@
id: mailwatch-login id: mailwatch-login
info: info:
name: MailWatch Login Page name: MailWatch Login Panel - Detect
author: oppsec author: oppsec
severity: info severity: info
description: MailWatch login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.title:"MailWatch Login Page" shodan-query: http.title:"MailWatch Login Page"
@ -26,3 +31,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/mantisbt-panel.yaml
View File

@ -1,11 +1,16 @@
id: mantisbt-panel id: mantisbt-panel
info: info:
name: MantisBT Login Panel name: MantisBT Login Panel - Detect
author: makyotox,daffainfo author: makyotox,daffainfo
severity: info severity: info
description: MantisBT login panel was detected.
reference: reference:
- https://www.mantisbt.org/ - https://www.mantisbt.org/
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.favicon.hash:662709064 shodan-query: http.favicon.hash:662709064
@ -28,3 +33,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

12
exposed-panels/matomo-login-portal.yaml
View File

@ -1,10 +1,14 @@
id: matomo-login-portal id: matomo-login-portal
info: info:
name: Matomo Login Portal name: Matomo Login Panel - Detect
author: Arr0way author: Arr0way
severity: info severity: info
description: Matomo provides website analytics description: Matomo logjn panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,matomo tags: panel,matomo
requests: requests:
@ -22,4 +26,6 @@ requests:
words: words:
- "Sign in" - "Sign in"
- "Matomo" - "Matomo"
condition: and condition: and
# Enhanced by md on 2022/11/28

9
exposed-panels/mcloud-panel.yaml
View File

@ -1,9 +1,14 @@
id: mcloud-panel id: mcloud-panel
info: info:
name: MCloud Panel Exposure name: mCloud Login Panel - Detect
author: ritikchaddha author: ritikchaddha
severity: high severity: high
description: mCloud login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.title:"mcloud-installer-web" shodan-query: http.title:"mcloud-installer-web"
@ -24,3 +29,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/meshcentral-login.yaml
View File

@ -1,9 +1,14 @@
id: meshcentral-login id: meshcentral-login
info: info:
name: MeshCentral - Login name: MeshCentral Login Panel - Detect
author: dhiyaneshDk author: dhiyaneshDk
severity: info severity: info
description: MeshCentral login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
shodan-query: http.title:"MeshCentral - Login" shodan-query: http.title:"MeshCentral - Login"
tags: panel,meshcentral tags: panel,meshcentral
@ -23,3 +28,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

10
exposed-panels/metabase-panel.yaml
View File

@ -1,10 +1,14 @@
id: metabase-panel id: metabase-panel
info: info:
name: Metabase Login Panel name: Metabase Login Panel - Detect
author: revblock,daffainfo author: revblock,daffainfo
severity: info severity: info
description: If a Metabase instance is deployed on the target URL it will return a login page with the version number in the page source description: Metabase login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
shodan-query: http.title:"Metabase" shodan-query: http.title:"Metabase"
tags: panel,metabase,login tags: panel,metabase,login
@ -34,3 +38,5 @@ requests:
group: 1 group: 1
regex: regex:
- '"(v\d+.\d+.\d+)"' - '"(v\d+.\d+.\d+)"'
# Enhanced by md on 2022/11/28

11
exposed-panels/metersphere-login.yaml
View File

@ -1,11 +1,16 @@
id: metersphere-login id: metersphere-login
info: info:
name: Metersphere Login name: MeterSphere Login Panel - Detect
author: pdteam author: pdteam
severity: info severity: info
description: MeterSphere login panel was detected.
reference: reference:
- https://github.com/metersphere/metersphere - https://github.com/metersphere/metersphere
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,metersphere tags: panel,metersphere
requests: requests:
@ -32,4 +37,6 @@ requests:
- type: dsl - type: dsl
dsl: dsl:
- "contains(tolower(all_headers), 'ms_session_id')" - "contains(tolower(all_headers), 'ms_session_id')"
# Enhanced by md on 2022/11/28

9
exposed-panels/mfiles-web-detect.yaml
View File

@ -1,11 +1,16 @@
id: mfiles-web-detect id: mfiles-web-detect
info: info:
name: M-Files Web Panel Detect name: M-Files Web Login Panel - Detect
author: Nodauf author: Nodauf
severity: info severity: info
description: M-Files Web login panel was detected.
reference: reference:
- https://www.m-files.com/about/trust-center/security-advisories/ - https://www.m-files.com/about/trust-center/security-advisories/
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.html:"M-Files Web" shodan-query: http.html:"M-Files Web"
@ -31,3 +36,5 @@ requests:
- 'M-Files user' - 'M-Files user'
- 'M-Files authentication' - 'M-Files authentication'
condition: or condition: or
# Enhanced by md on 2022/11/28

9
exposed-panels/microfocus-filr-panel.yaml
View File

@ -1,9 +1,14 @@
id: microfocus-filr-panel id: microfocus-filr-panel
info: info:
name: Micro Focus Filr Panel name: Micro Focus Filr Login Panel - Detect
author: ritikchaddha author: ritikchaddha
severity: info severity: info
description: Micro Focus Filr login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.html:"Micro Focus Filr" shodan-query: http.html:"Micro Focus Filr"
@ -24,3 +29,5 @@ requests:
- type: status - type: status
status: status:
- 404 - 404
# Enhanced by md on 2022/11/28

9
exposed-panels/microfocus-vibe-panel.yaml
View File

@ -1,9 +1,14 @@
id: microfocus-vibe-panel id: microfocus-vibe-panel
info: info:
name: Micro Focus Vibe Login Panel name: Micro Focus Vibe Login Panel - Detect
author: ritikchaddha author: ritikchaddha
severity: info severity: info
description: Micro Focus Vibe login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
verified: true verified: true
shodan-query: http.html:"Micro Focus Vibe" shodan-query: http.html:"Micro Focus Vibe"
@ -28,3 +33,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

10
exposed-panels/microsoft-exchange-panel.yaml
View File

@ -1,12 +1,16 @@
id: microsoft-exchange-panel id: microsoft-exchange-panel
info: info:
name: Microsoft Exchange Control Panel name: Microsoft Exchange Admin Center Login Panel - Detect
author: r3dg33k author: r3dg33k
severity: info severity: info
description: Publicly accessible Microsoft Exchange Server Control Panel description: Microsoft Exchange Admin Center login panel was detected.
reference: reference:
- https://docs.microsoft.com/en-us/answers/questions/58814/block-microsoft-exchange-server-2016-exchange-admi.html - https://docs.microsoft.com/en-us/answers/questions/58814/block-microsoft-exchange-server-2016-exchange-admi.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: microsoft,panel,exchange tags: microsoft,panel,exchange
requests: requests:
@ -23,3 +27,5 @@ requests:
- type: word - type: word
words: words:
- 'Exchange Admin Center' - 'Exchange Admin Center'
# Enhanced by md on 2022/11/28

9
exposed-panels/mikrotik-routeros.yaml
View File

@ -1,11 +1,16 @@
id: mikrotik-routeros id: mikrotik-routeros
info: info:
name: MikroTik RouterOS Login name: MikroTik Router OS Login Panel - Detect
author: gy741 author: gy741
severity: info severity: info
description: MikroTik Router OS login panel was detected.
reference: reference:
- https://systemweakness.com/routeros-user-with-just-ftp-policy-can-write-to-filesystem-cve-2021-27221-e3e45d780dfe - https://systemweakness.com/routeros-user-with-just-ftp-policy-can-write-to-filesystem-cve-2021-27221-e3e45d780dfe
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,login tags: panel,login
requests: requests:
@ -23,3 +28,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

9
exposed-panels/mini-start-page.yaml
View File

@ -1,11 +1,16 @@
id: mini-start-page id: mini-start-page
info: info:
name: Miniweb Start Page name: Miniweb Start Page Login Panel - Detect
author: dhiyaneshDk author: dhiyaneshDk
severity: info severity: info
description: Miniweb Start Page login panel was detected.
reference: reference:
- https://www.exploit-db.com/ghdb/6500 - https://www.exploit-db.com/ghdb/6500
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: edb,panel tags: edb,panel
requests: requests:
@ -22,3 +27,5 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28

11
exposed-panels/minio-browser.yaml
View File

@ -1,9 +1,14 @@
id: minio-browser id: minio-browser
info: info:
name: MinIO Browser name: MinIO Browser Login Panel - Detect
author: pikpikcu author: pikpikcu
severity: info severity: info
description: MinIO Browser login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata: metadata:
shodan-query: title:"MinIO Browser" shodan-query: title:"MinIO Browser"
tags: panel,minio tags: panel,minio
@ -21,4 +26,6 @@ requests:
- type: status - type: status
status: status:
- 200 - 200
# Enhanced by md on 2022/11/28