From f762917e4a3d103d00958fd1a31604ba9991cc7d Mon Sep 17 00:00:00 2001 From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com> Date: Tue, 7 Feb 2023 01:40:32 +0530 Subject: [PATCH] updated id, severity,cvss --- .../{solr-exposure.yaml => solr-panel-exposure.yaml} | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) rename exposed-panels/{solr-exposure.yaml => solr-panel-exposure.yaml} (74%) diff --git a/exposed-panels/solr-exposure.yaml b/exposed-panels/solr-panel-exposure.yaml similarity index 74% rename from exposed-panels/solr-exposure.yaml rename to exposed-panels/solr-panel-exposure.yaml index d5f7a2363f..4d324ebebb 100644 --- a/exposed-panels/solr-exposure.yaml +++ b/exposed-panels/solr-panel-exposure.yaml @@ -1,4 +1,4 @@ -id: solr-exposure +id: solr-panel-exposure info: name: Apache Solr Admin Panel - Detect @@ -6,12 +6,13 @@ info: severity: info description: Apache Solr admin panel was detected. classification: - cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0.0 + cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L + cvss-score: 8.6 cwe-id: CWE-200 metadata: + verified: true shodan-query: http.title:"Solr Admin" - tags: panel,solr,apache + tags: panel,solr,apache,admin requests: - method: GET @@ -20,8 +21,10 @@ requests: - '{{BaseURL}}' stop-at-first-match: true + matchers-condition: and matchers: - type: word + part: body words: - "Solr Admin"