From bdc968e6d40dc3da92cdb8a492c5109ca2d6a123 Mon Sep 17 00:00:00 2001
From: Arman <65326024+tess-ss@users.noreply.github.com>
Date: Wed, 2 Nov 2022 11:06:56 -0700
Subject: [PATCH 1/2] Create smarterstats-setup-exposed.yaml

---
 .../smarterstats-setup-exposed.yaml           | 37 +++++++++++++++++++
 1 file changed, 37 insertions(+)
 create mode 100644 misconfiguration/smarterstats-setup-exposed.yaml

diff --git a/misconfiguration/smarterstats-setup-exposed.yaml b/misconfiguration/smarterstats-setup-exposed.yaml
new file mode 100644
index 0000000000..e8be211011
--- /dev/null
+++ b/misconfiguration/smarterstats-setup-exposed.yaml
@@ -0,0 +1,37 @@
+id: smarterstats-setup-exposed
+
+info:
+  name: SmarterStats Setup Exposed
+  author: tess
+  severity: high
+  metadata:
+    verified: true
+    shodan-query: title:"Welcome to SmarterStats!"
+  tags: misconfig,smarterstats,exposed
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}:9999/Admin/frmWelcome.aspx'
+      - '{{BaseURL}}/Admin/frmWelcome.aspx'
+
+    stop-at-first-match: true
+    host-redirects: true
+    max-redirects: 2
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "SmarterStats - SmarterStats"
+          - "Create System Administrator"
+        condition: and
+
+      - type: word
+        part: header
+        words:
+          - "text/html"
+
+      - type: status
+        status:
+          - 200

From 5712a662274edb8be999414957ff8181c7fa8cec Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Thu, 3 Nov 2022 09:12:27 +0530
Subject: [PATCH 2/2] Update and rename smarterstats-setup-exposed.yaml to
 smarterstats-setup.yaml

---
 ...erstats-setup-exposed.yaml => smarterstats-setup.yaml} | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)
 rename misconfiguration/{smarterstats-setup-exposed.yaml => smarterstats-setup.yaml} (76%)

diff --git a/misconfiguration/smarterstats-setup-exposed.yaml b/misconfiguration/smarterstats-setup.yaml
similarity index 76%
rename from misconfiguration/smarterstats-setup-exposed.yaml
rename to misconfiguration/smarterstats-setup.yaml
index e8be211011..b2898b52fe 100644
--- a/misconfiguration/smarterstats-setup-exposed.yaml
+++ b/misconfiguration/smarterstats-setup.yaml
@@ -1,21 +1,19 @@
-id: smarterstats-setup-exposed
+id: smarterstats-setup
 
 info:
-  name: SmarterStats Setup Exposed
+  name: SmarterStats Setup Exposure
   author: tess
   severity: high
   metadata:
     verified: true
     shodan-query: title:"Welcome to SmarterStats!"
-  tags: misconfig,smarterstats,exposed
+  tags: misconfig,smarterstats,exposure
 
 requests:
   - method: GET
     path:
-      - '{{BaseURL}}:9999/Admin/frmWelcome.aspx'
       - '{{BaseURL}}/Admin/frmWelcome.aspx'
 
-    stop-at-first-match: true
     host-redirects: true
     max-redirects: 2
     matchers-condition: and