From e4c22f147ea981298bdf2b6295ff7e6b104ee042 Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Sun, 7 Mar 2021 19:16:57 +0530
Subject: [PATCH] Create solr-query-dashboard.yaml

---
 misconfiguration/solr-query-dashboard.yaml | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 misconfiguration/solr-query-dashboard.yaml

diff --git a/misconfiguration/solr-query-dashboard.yaml b/misconfiguration/solr-query-dashboard.yaml
new file mode 100644
index 0000000000..f5524980c6
--- /dev/null
+++ b/misconfiguration/solr-query-dashboard.yaml
@@ -0,0 +1,22 @@
+id: solr-admin-query
+
+info:
+  name: Solr Admin Query Page
+  author: dhiyaneshDK
+  severity: High
+  reference: https://www.exploit-db.com/ghdb/5856
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/admin/'
+      - '{{BaseURL}}/solr/admin/'
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - '<title>Solr admin page</title>'
+      - type: status
+        status:
+          - 200