From 929250a6afa3ba5c1ad4f3520163a370913e7cfa Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Wed, 21 Jul 2021 14:01:09 +0530
Subject: [PATCH] Create roundcube-log-disclosure.yaml

---
 exposures/logs/roundcube-log-disclosure.yaml | 23 ++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 exposures/logs/roundcube-log-disclosure.yaml

diff --git a/exposures/logs/roundcube-log-disclosure.yaml b/exposures/logs/roundcube-log-disclosure.yaml
new file mode 100644
index 0000000000..63d017a187
--- /dev/null
+++ b/exposures/logs/roundcube-log-disclosure.yaml
@@ -0,0 +1,23 @@
+id: roundcube-log-disclosure
+
+info:
+  name: Roundcube Log Disclosure
+  author: dhiyaneshDk
+  severity: low
+  reference: https://github.com/detectify/ugly-duckling/blob/master/modules/crowdsourced/roundcube-log-disclosure.json
+  tags: exposure,logs
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/roundcube/logs/sendmail"
+      - "{{BaseURL}}/roundcube/logs/errors.log"
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "IMAP Error:"
+        part: body
+      - type: status
+        status:
+          - 200