From 9c58a83fbc466a3f058ed951e9f578325072c01f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Krzysztof=20Zaj=C4=85c?= <krzysztof.zajac@cert.pl>
Date: Fri, 3 Nov 2023 14:29:01 +0100
Subject: [PATCH] Less history

---
 http/misconfiguration/less-history.yaml | 39 +++++++++++++++++++++++++
 1 file changed, 39 insertions(+)
 create mode 100644 http/misconfiguration/less-history.yaml

diff --git a/http/misconfiguration/less-history.yaml b/http/misconfiguration/less-history.yaml
new file mode 100644
index 0000000000..fe1e9330f8
--- /dev/null
+++ b/http/misconfiguration/less-history.yaml
@@ -0,0 +1,39 @@
+id: less-history
+
+info:
+  name: Less History
+  author: kazet
+  severity: low
+  description: Discover history for less
+  metadata:
+    max-request: 1
+  tags: misconfig
+
+http:
+  - method: GET
+    max-redirects: 1
+    path:
+      - "{{BaseURL}}/.lesshst"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - ".less-history-file:"
+
+      - type: word
+        part: response
+        words:
+          - "<?xml"
+          - "<env"
+          - "application/javascript"
+          - "application/json"
+          - "application/xml"
+          - "html>"
+          - "text/html"
+          - "image/"
+        negative: true
+
+      - type: status
+        status:
+          - 200