From dda3ab3a1be9895bda19b7fa8dc2b69f2bacc8c8 Mon Sep 17 00:00:00 2001
From: pussycat0x <65701233+pussycat0x@users.noreply.github.com>
Date: Tue, 29 Aug 2023 13:48:38 +0530
Subject: [PATCH] minor - changes

---
 http/misconfiguration/ecology-info-leak.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/http/misconfiguration/ecology-info-leak.yaml b/http/misconfiguration/ecology-info-leak.yaml
index 59d1c870f0..01b95a1e3e 100644
--- a/http/misconfiguration/ecology-info-leak.yaml
+++ b/http/misconfiguration/ecology-info-leak.yaml
@@ -7,7 +7,7 @@ info:
   description: |
     The "ecology" component exposes a file that contains sensitive database credentials (dbuser/dbpass).
   reference:
-    - https://twitter.com/win3zz/status/1694239332465520684
+    - https://github.com/xinyisleep/pocscan/blob/main/%E6%B3%9B%E5%BE%AE/oa%E6%B3%9B%E5%BE%AE0day%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96.py
   metadata:
     fofa-dork: app="泛微-协同办公OA"
     shodan-dork: ecology_JSessionid
@@ -26,7 +26,7 @@ http:
         words:
           - "ecology.password"
           - "ecology.charset"
-        condition: or
+        condition: and
 
       - type: status
         status: