updated info

vulnerabilities/phpmyadmin-unauth.yaml

@@ -1,16 +1,17 @@
-id: phpmyadmin-unauth
+id: phpmyadmin-unauth-access
 
 info:
-  name: phpMyAdmin-Unauth
+  name: PhpMyAdmin - Unauthenticated Access
   author: pwnhxl
   severity: high
-  description: phpMyAdmin-Unauth.
+  description: Unauthenticated Access to phpmyadmin dashboard.
   reference:
     - https://www.phpmyadmin.net
   metadata:
-    verified: true
+    verified: "true"
+    shodan-query: html:"server_databases.php"
     fofa-query: body="server_databases.php"
-  tags: phpmyadmin,unauth
+  tags: misconfig,phpmyadmin,unauth
 
 requests:
   - raw:
@@ -18,7 +19,6 @@ requests:
         GET {{path}} HTTP/1.1
         Host: {{Hostname}}
 
-    attack: batteringram
     payloads:
       path:
         - "/index.php"
@@ -27,6 +27,7 @@ requests:
         - "/phpMyAdmin/index.php"
         - "/phpmyadmin/index.php"
         - "/_phpmyadmin/index.php"
+    attack: batteringram
 
     stop-at-first-match: true
     matchers-condition: and