From 4efec2d2e39edd0b2b605257bf89d3ae45a9db71 Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Wed, 27 Sep 2023 19:16:20 +0530 Subject: [PATCH 1/2] Create shopware-installer.yaml --- .../installer/shopware-installer.yaml | 29 +++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 http/misconfiguration/installer/shopware-installer.yaml diff --git a/http/misconfiguration/installer/shopware-installer.yaml b/http/misconfiguration/installer/shopware-installer.yaml new file mode 100644 index 0000000000..fd3d73ba9e --- /dev/null +++ b/http/misconfiguration/installer/shopware-installer.yaml @@ -0,0 +1,29 @@ +id: shopware-installer + +info: + name: Shopware Installer + author: DhiyaneshDk + severity: high + metadata: + max-request: 1 + verified: true + fofa-query: title="Installation | Shopware 6" + tags: misconfig,shopware,install,exposure + +http: + - method: GET + path: + - "{{BaseURL}}/public/recovery/install/index.php" + + matchers-condition: and + matchers: + - type: word + part: body + words: + - 'Setup | Shopware' + - 'install' + condition: and + + - type: status + status: + - 200 From d008a02bc65e3332fde033cc405ef95f60e3fb04 Mon Sep 17 00:00:00 2001 From: pussycat0x <65701233+pussycat0x@users.noreply.github.com> Date: Fri, 29 Sep 2023 11:11:33 +0530 Subject: [PATCH 2/2] reference - update --- http/misconfiguration/installer/shopware-installer.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/http/misconfiguration/installer/shopware-installer.yaml b/http/misconfiguration/installer/shopware-installer.yaml index fd3d73ba9e..6e99754fa8 100644 --- a/http/misconfiguration/installer/shopware-installer.yaml +++ b/http/misconfiguration/installer/shopware-installer.yaml @@ -4,6 +4,8 @@ info: name: Shopware Installer author: DhiyaneshDk severity: high + reference: + - https://www.shopware.com/en/ metadata: max-request: 1 verified: true