From 91ea210cb6d1f768f5c730e2d7947c0a761c8497 Mon Sep 17 00:00:00 2001
From: Dominique RIGHETTO <righettod@users.noreply.github.com>
Date: Sat, 8 Jan 2022 15:36:08 +0100
Subject: [PATCH] Add H2 console template (#3504)

* Auto Generated CVE annotations [Sat Jan  8 10:22:47 UTC 2022] :robot:

* Add tpl

Co-authored-by: GitHub Action <action@github.com>
---
 exposed-panels/h2console-panel.yaml | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 exposed-panels/h2console-panel.yaml

diff --git a/exposed-panels/h2console-panel.yaml b/exposed-panels/h2console-panel.yaml
new file mode 100644
index 0000000000..b7659b3a6f
--- /dev/null
+++ b/exposed-panels/h2console-panel.yaml
@@ -0,0 +1,24 @@
+id: h2console-panel
+
+info:
+  name: H2 console web panel
+  author: righettod
+  severity: info
+  reference:
+    - https://mp.weixin.qq.com/s/Yn5U8WHGJZbTJsxwUU3UiQ
+    - https://jfrog.com/blog/the-jndi-strikes-back-unauthenticated-rce-in-h2-database-console
+    - https://www.shodan.io/search?query=http.title%3A%22H2+Console%22
+  tags: panel,h2,console
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/h2-console/login.jsp'
+
+    matchers:
+
+      - type: dsl
+        dsl:
+          - "status_code==200"
+          - "contains(tolower(body), '<title>h2 console</title>')"
+        condition: and