id: 3cx-phone-webclient-management-panel

info:
  name: 3CX Phone System Web Client Management Console - Panel Detect
  author: idealphase
  severity: info
  description: 3CX Phone System Web Client Management Console panel was detected.
  reference:
    - https://www.3cx.com/phone-system/
    - https://www.3cx.com/blog/unified-communications/client-apps/
    - https://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cwe-id: CWE-200
    cpe: cpe:2.3:a:3cx:3cx:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: 3cx
    product: 3cx
    shodan-query:
      - http.title:"3CX Webclient"
      - http.title:"3cx webclient"
      - http.title:"3cx phone system management console"
      - http.favicon.hash:970132176
    google-query:
      - intitle:"3CX Webclient"
      - intitle:"3cx phone system management console"
      - intitle:"3cx webclient"
    fofa-query:
      - icon_hash=970132176
      - title="3cx phone system management console"
      - title="3cx webclient"
  tags: panel,3cx

http:
  - method: GET
    path:
      - '{{BaseURL}}/webclient/'

    matchers:
      - type: word
        words:
          - " <title>3CX Webclient</title>"
          - '<meta name="description" content="3CX">'
        condition: or
# digest: 4a0a0047304502200a5151965ace29d1dafc3469f50c2f7136477a080501769e7a13e5fbafe83117022100968191d985f1a1153be61bb5e77cd24f615b998e60d6c7815f6d87226274a26c:922c64590222798bb761d5b6d8e72950