updated matcherand tag ,added metadata

2023-02-06 16:57:49 +05:30 · 2023-02-06 16:57:49 +05:30 · bb1ddea4c6
parent 078279835e
commit bb1ddea4c6
1 changed files with 11 additions and 13 deletions
--- a/exposed-panels/odoo-database-manager.yaml
+++ b/exposed-panels/odoo-database-manager.yaml
@ -1,17 +1,14 @@
 id: odoo-database-manager

 info:
-  name: Odoo Database Manager Panel - Detect
+  name: Odoo - Database Manager Discovery
  author: __Fazal,R3dg33k
  severity: critical
-  description: Odoo database manager was discovered and allows access to databases.
-  reference:
-    - https://www.odoo.com/
-  classification:
-    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
-    cvss-score: 9.8
-    cwe-id: CWE-200
-  tags: panel,odoo
+  description: Odoo database manager was discovered.
+  metadata:
+    verified: true
+    shodan-query: title:"Odoo"
+  tags: panel,odoo,backup

 requests:
  - method: GET
@ -20,13 +17,14 @@ requests:

    matchers-condition: and
    matchers:
-      - type: status
-        status:
-          - 200
      - type: word
        words:
          - "<title>Odoo</title>"
-          - "{ action: 'database_manager' }"
+          - ".o_database_delete"
        condition: and

+      - type: status
+        status:
+          - 200
+
 # Enhanced by mp on 2022/07/15