daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Dashboard Content Enhancements (#6181) 

Dashboard Content Enhancements
patch-1
MostInterestingBotInTheWorld 2022-11-29 09:52:46 -05:00 committed by GitHub
parent 60975d8fff
commit 8836a4d9b6
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
37 changed files with 298 additions and 49 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
exposed-panels/apache-jmeter-dashboard.yaml
View File

@ -1,9 +1,14 @@
id: apache-jmeter-dashboard
info:
name: Apache JMeter Dashboard
name: Apache JMeter Dashboard Login Panel - Detect
author: tess
severity: low
description: Apache JMeter Dashboard login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: title:"Apache JMeter Dashboard"
@ -26,3 +31,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

8
exposed-panels/apache/public-tomcat-manager.yaml
View File

@ -1,11 +1,13 @@
id: public-tomcat-manager
info:
name: Apache Tomcat Manager Disclosure
name: Apache Tomcat Manager Login Panel - Detect
author: Ahmed Sherif,geeknik,sinKettu
severity: info
description: An Apache Tomcat Manager panel was discovered.
description: Apache Tomcat Manager login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
shodan-query: title:"Apache Tomcat"
@ -30,3 +32,5 @@ requests:
- 401
- 200
condition: or
# Enhanced by md on 2022/11/28

9
exposed-panels/dplus-dashboard.yaml
View File

@ -1,9 +1,14 @@
id: dplus-dashboard
info:
name: DPLUS Dashboard Exposure
name: DPLUS Dashboard Panel - Detect
author: tess
severity: info
description: DPLUS Dashboard panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: title:"DPLUS Dashboard"
@ -27,3 +32,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/fastpanel-hosting-control-panel.yaml
View File

@ -1,9 +1,14 @@
id: fastpanel-hosting-control-panel
info:
name: Fastpanel Hosting Control Panel
name: FASTPANEL Login Panel - Detect
author: pikpikcu
severity: info
description: FASTPANEL login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: title:"FASTPANEL HOSTING CONTROL"
@ -24,3 +29,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/lacie-panel.yaml
View File

@ -1,11 +1,16 @@
id: lacie-panel
info:
name: LaCie Login Panel
name: LaCie Login Panel - Detect
author: dhiyaneshDK
severity: info
description: LaCie login panel was detected.
reference:
- https://www.exploit-db.com/ghdb/7118
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,lacie,login,edb
requests:
@ -29,3 +34,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/lancom-router-panel.yaml
View File

@ -1,9 +1,14 @@
id: lancom-router-panel
info:
name: Lancom Router Panel
name: Lancom Router Login Panel - Detect
author: __Fazal,daffainfo
severity: info
description: Lancom router login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: "true"
shodan-query: html:"LANCOM Systems GmbH"
@ -26,3 +31,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

11
exposed-panels/landrayoa-panel.yaml
View File

@ -1,9 +1,14 @@
id: landrayoa-panel
info:
name: LandrayOA Panel Login
name: Landray Login Panel - Detect
author: YanYun
severity: info
description: Landray login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,landrayoa
requests:
@ -27,4 +32,6 @@ requests:
- type: word
words:
- 'isopen='
part: header
part: header
# Enhanced by md on 2022/11/28

9
exposed-panels/lansweeper-login.yaml
View File

@ -1,9 +1,14 @@
id: lansweeper-login
info:
name: Lansweeper Login
name: Lansweeper Login Panel - Detect
author: divya_mudgal
severity: info
description: Lansweeper login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: title:"Lansweeper - Login"
@ -31,3 +36,5 @@ requests:
group: 1
regex:
- '"\/js\/CustomControls\.js\?([0-9.]+)" type="text\/javascript"'
# Enhanced by md on 2022/11/28

9
exposed-panels/lantronix-webmanager-panel.yaml
View File

@ -1,9 +1,14 @@
id: lantronix-webmanager-panel
info:
name: Lantronix WEB-Manager Panel
name: Lantronix Web Manager Login Panel- Detect
author: princechaddha
severity: info
description: Lantronix Web Manager login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,lantronix
requests:
@ -29,3 +34,5 @@ requests:
group: 1
regex:
- ">Version ([0-9.]+)</font>"
# Enhanced by md on 2022/11/28

9
exposed-panels/lenovo-thinkserver-panel.yaml
View File

@ -1,9 +1,14 @@
id: lenovo-thinkserver-panel
info:
name: Lenovo ThinkServer System Manager Panel Detect
name: Lenovo ThinkServer System Manager Login Panel - Detect
author: princechaddha
severity: info
description: Lenovo ThinkServer System Manager login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,thinkserver,lenovo
requests:
@ -21,3 +26,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/leostream-panel.yaml
View File

@ -1,11 +1,16 @@
id: leostream-panel
info:
name: Leostream Panel Detect
name: Leostream Login Panel - Detect
author: praetorian-thendrickson
severity: info
description: Leostream login panel was detected.
reference:
- https://leostream.com
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
shodan-query: http.title:"Leostream"
tags: panel,leostream
@ -24,3 +29,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/librenms-login.yaml
View File

@ -1,9 +1,14 @@
id: librenms-login
info:
name: LibreNMS Login Panel
name: LibreNMS Login Panel - Detect
author: pikpikcu
severity: info
description: LibreNMS login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
fofa-query: title="librenms"
tags: librenms,panel
@ -23,3 +28,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/liferay-portal.yaml
View File

@ -1,12 +1,17 @@
id: liferay-portal
info:
name: Liferay Portal Detect
name: Liferay Login Panel - Detect
author: organiccrap,dwisiswant0,ricardomaia
severity: info
description: Liferay login panel was detected,
reference:
- https://www.liferay.com/
- https://github.com/mzer0one/CVE-2020-7961-POC
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.favicon.hash:129457226
@ -43,3 +48,5 @@ requests:
group: 2
regex:
- '(i?)Liferay-Portal:.*?(\d+\.?.*?)\s'
# Enhanced by md on 2022/11/28

10
exposed-panels/linkerd-panel.yaml
View File

@ -1,11 +1,15 @@
id: linkerd-panel
info:
name: Linkered Panel Exposure
name: Linkerd Panel - Detect
author: tess
severity: high
description: |
Linkerd is a service mesh for Kubernetes. It makes running services easier and safer by giving you runtime debugging, observability, reliability, and security—all without requiring any changes to your code.
Linkerd panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: html:"data-controller-namespace"
@ -33,3 +37,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/linksys-wifi-login.yaml
View File

@ -1,9 +1,14 @@
id: linksys-wifi-login
info:
name: Linksys Smart Wi-Fi
name: Linksys Smart Wi-Fi Login Panel - Detect
author: pussycat0x
severity: info
description: Linksys Smart Wi-Fi login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
shodan-dork: http.title:"Linksys Smart WI-FI"
tags: tech,panel,linksys,iot
@ -26,3 +31,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/livehelperchat-admin-panel.yaml
View File

@ -1,9 +1,14 @@
id: livehelperchat-admin-panel
info:
name: Live Helper Chat Admin Panel
name: Live Helper Chat Admin Login Panel - Detect
author: ritikchaddha
severity: info
description: Live Helper Chat admin login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: title:"Live Helper Chat"
@ -27,3 +32,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/livezilla-login-panel.yaml
View File

@ -1,9 +1,14 @@
id: livezilla-login-panel
info:
name: Livezilla login detect
name: LiveZilla Login Panel - Detect
author: __Fazal
severity: info
description: LiveZilla login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,livezilla,login
requests:
@ -20,3 +25,5 @@ requests:
- type: word
words:
- 'LiveZilla'
# Enhanced by md on 2022/11/28

9
exposed-panels/logitech-harmony-portal.yaml
View File

@ -1,9 +1,14 @@
id: logitech-harmony-portal
info:
name: Logitech Harmony Pro Installer Portal
name: Logitech Harmony Pro Installer Portal Login Panel - Detect
author: ritikchaddha
severity: info
description: Logitech Harmony Pro Installer Portal login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.title:"Logitech Harmony Pro Installer"
@ -24,3 +29,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/looker-panel.yaml
View File

@ -1,9 +1,14 @@
id: looker-panel
info:
name: Looker Login Panel
name: Looker Login Panel - Detect
author: ritikchaddha,daffainfo
severity: info
description: Looker login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan: http.html:"lookerVersion"
@ -32,3 +37,5 @@ requests:
group: 1
regex:
- "lookerVersion: '([0-9.]+)',"
# Enhanced by md on 2022/11/28

9
exposed-panels/lucee-login.yaml
View File

@ -1,9 +1,14 @@
id: lucee-login
info:
name: Lucee Web/Server Administrator Login
name: Lucee Web and Lucee Server Admin Login Panel - Detect
author: dhiyaneshDK
severity: info
description: Lucee admin login panels were detected in both Web and Server tabs.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
shodan-query: http.title:"Lucee"
tags: panel,lucee
@ -23,3 +28,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/maestro-login-panel.yaml
View File

@ -1,9 +1,14 @@
id: maestro-login-panel
info:
name: Maestro - LuCI Login Panel
name: Maestro LuCI Login Panel - Detect
author: tess
severity: info
description: Maestro LuCI login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-dork: http.title:"Maestro - LuCI"
@ -28,3 +33,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

11
exposed-panels/magento-admin-panel.yaml
View File

@ -1,14 +1,17 @@
id: magento-admin-panel
info:
name: Exposed Magento Admin Panel
name: Magento Admin Login Panel - Detect
author: TechbrunchFR,ritikchaddha
severity: info
description: |
As a security best practice, Magento recommends that you use a unique, custom Admin URL instead of the default admin or a common term such as backend. Although it will not directly protect your site
from a determined bad actor, it can reduce exposure to scripts that try to gain unauthorized access.
Magento admin login panel was detected.
reference:
- https://docs.magento.com/user-guide/stores/store-urls-custom-admin.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.component:"Magento"
@ -30,3 +33,5 @@ requests:
- "Magento"
- "Admin Panel"
condition: and
# Enhanced by md on 2022/11/28

10
exposed-panels/mailhog-panel.yaml
View File

@ -1,13 +1,17 @@
id: mailhog-panel
info:
name: MailHog Panel Detect
name: MailHog Panel - Detect
author: kh4sh3i
severity: info
description: |
MailHog is an email testing tool for developers
MailHog panel was detected.
reference:
- https://github.com/mailhog/MailHog
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.html:"mailhog"
@ -30,3 +34,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/mailwatch-login.yaml
View File

@ -1,9 +1,14 @@
id: mailwatch-login
info:
name: MailWatch Login Page
name: MailWatch Login Panel - Detect
author: oppsec
severity: info
description: MailWatch login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.title:"MailWatch Login Page"
@ -26,3 +31,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/mantisbt-panel.yaml
View File

@ -1,11 +1,16 @@
id: mantisbt-panel
info:
name: MantisBT Login Panel
name: MantisBT Login Panel - Detect
author: makyotox,daffainfo
severity: info
description: MantisBT login panel was detected.
reference:
- https://www.mantisbt.org/
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.favicon.hash:662709064
@ -28,3 +33,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

12
exposed-panels/matomo-login-portal.yaml
View File

@ -1,10 +1,14 @@
id: matomo-login-portal
info:
name: Matomo Login Portal
name: Matomo Login Panel - Detect
author: Arr0way
severity: info
description: Matomo provides website analytics
description: Matomo logjn panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,matomo
requests:
@ -22,4 +26,6 @@ requests:
words:
- "Sign in"
- "Matomo"
condition: and
condition: and
# Enhanced by md on 2022/11/28

9
exposed-panels/mcloud-panel.yaml
View File

@ -1,9 +1,14 @@
id: mcloud-panel
info:
name: MCloud Panel Exposure
name: mCloud Login Panel - Detect
author: ritikchaddha
severity: high
description: mCloud login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.title:"mcloud-installer-web"
@ -24,3 +29,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/meshcentral-login.yaml
View File

@ -1,9 +1,14 @@
id: meshcentral-login
info:
name: MeshCentral - Login
name: MeshCentral Login Panel - Detect
author: dhiyaneshDk
severity: info
description: MeshCentral login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
shodan-query: http.title:"MeshCentral - Login"
tags: panel,meshcentral
@ -23,3 +28,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

10
exposed-panels/metabase-panel.yaml
View File

@ -1,10 +1,14 @@
id: metabase-panel
info:
name: Metabase Login Panel
name: Metabase Login Panel - Detect
author: revblock,daffainfo
severity: info
description: If a Metabase instance is deployed on the target URL it will return a login page with the version number in the page source
description: Metabase login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
shodan-query: http.title:"Metabase"
tags: panel,metabase,login
@ -34,3 +38,5 @@ requests:
group: 1
regex:
- '"(v\d+.\d+.\d+)"'
# Enhanced by md on 2022/11/28

11
exposed-panels/metersphere-login.yaml
View File

@ -1,11 +1,16 @@
id: metersphere-login
info:
name: Metersphere Login
name: MeterSphere Login Panel - Detect
author: pdteam
severity: info
description: MeterSphere login panel was detected.
reference:
- https://github.com/metersphere/metersphere
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,metersphere
requests:
@ -32,4 +37,6 @@ requests:
- type: dsl
dsl:
- "contains(tolower(all_headers), 'ms_session_id')"
- "contains(tolower(all_headers), 'ms_session_id')"
# Enhanced by md on 2022/11/28

9
exposed-panels/mfiles-web-detect.yaml
View File

@ -1,11 +1,16 @@
id: mfiles-web-detect
info:
name: M-Files Web Panel Detect
name: M-Files Web Login Panel - Detect
author: Nodauf
severity: info
description: M-Files Web login panel was detected.
reference:
- https://www.m-files.com/about/trust-center/security-advisories/
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.html:"M-Files Web"
@ -31,3 +36,5 @@ requests:
- 'M-Files user'
- 'M-Files authentication'
condition: or
# Enhanced by md on 2022/11/28

9
exposed-panels/microfocus-filr-panel.yaml
View File

@ -1,9 +1,14 @@
id: microfocus-filr-panel
info:
name: Micro Focus Filr Panel
name: Micro Focus Filr Login Panel - Detect
author: ritikchaddha
severity: info
description: Micro Focus Filr login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.html:"Micro Focus Filr"
@ -24,3 +29,5 @@ requests:
- type: status
status:
- 404
# Enhanced by md on 2022/11/28

9
exposed-panels/microfocus-vibe-panel.yaml
View File

@ -1,9 +1,14 @@
id: microfocus-vibe-panel
info:
name: Micro Focus Vibe Login Panel
name: Micro Focus Vibe Login Panel - Detect
author: ritikchaddha
severity: info
description: Micro Focus Vibe login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
verified: true
shodan-query: http.html:"Micro Focus Vibe"
@ -28,3 +33,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

10
exposed-panels/microsoft-exchange-panel.yaml
View File

@ -1,12 +1,16 @@
id: microsoft-exchange-panel
info:
name: Microsoft Exchange Control Panel
name: Microsoft Exchange Admin Center Login Panel - Detect
author: r3dg33k
severity: info
description: Publicly accessible Microsoft Exchange Server Control Panel
description: Microsoft Exchange Admin Center login panel was detected.
reference:
- https://docs.microsoft.com/en-us/answers/questions/58814/block-microsoft-exchange-server-2016-exchange-admi.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: microsoft,panel,exchange
requests:
@ -23,3 +27,5 @@ requests:
- type: word
words:
- 'Exchange Admin Center'
# Enhanced by md on 2022/11/28

9
exposed-panels/mikrotik-routeros.yaml
View File

@ -1,11 +1,16 @@
id: mikrotik-routeros
info:
name: MikroTik RouterOS Login
name: MikroTik Router OS Login Panel - Detect
author: gy741
severity: info
description: MikroTik Router OS login panel was detected.
reference:
- https://systemweakness.com/routeros-user-with-just-ftp-policy-can-write-to-filesystem-cve-2021-27221-e3e45d780dfe
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: panel,login
requests:
@ -23,3 +28,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

9
exposed-panels/mini-start-page.yaml
View File

@ -1,11 +1,16 @@
id: mini-start-page
info:
name: Miniweb Start Page
name: Miniweb Start Page Login Panel - Detect
author: dhiyaneshDk
severity: info
description: Miniweb Start Page login panel was detected.
reference:
- https://www.exploit-db.com/ghdb/6500
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
tags: edb,panel
requests:
@ -22,3 +27,5 @@ requests:
- type: status
status:
- 200
# Enhanced by md on 2022/11/28

11
exposed-panels/minio-browser.yaml
View File

@ -1,9 +1,14 @@
id: minio-browser
info:
name: MinIO Browser
name: MinIO Browser Login Panel - Detect
author: pikpikcu
severity: info
description: MinIO Browser login panel was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
metadata:
shodan-query: title:"MinIO Browser"
tags: panel,minio
@ -21,4 +26,6 @@ requests:
- type: status
status:
- 200
- 200
# Enhanced by md on 2022/11/28