id: webalizer-statistics info: name: Webalizer Statistics Information Disclosure author: 0x_Akoko severity: low description: | The remote host is running the Webalizer Report generator. Webalizer parses web logs and gives a potential attacker information regarding hosts that have accessed the server, resources accessed, total statistics for the Web server, version of Web server, and more. remediation: Use ACLs to protect the Webalizer report. reference: - https://www.rapid7.com/db/vulnerabilities/spider-webalizer-stats-disclosure - https://www.tenable.com/plugins/nnm/2506 metadata: verified: true max-request: 2 shodan-query: html:"Generated by The Webalizer" tags: webalizer,logs,statistics,tenable,misconfig http: - method: GET path: - '{{BaseURL}}' - '{{BaseURL}}/stats/index.html' stop-at-first-match: true matchers-condition: and matchers: - type: word part: body words: - 'Generated by The Webalizer' - 'Usage Statistics' condition: and - type: status status: - 200 # digest: 4b0a004830460221009cb558beab988595d79ba3796ad49a0e9a26406d3baaac49209a9b2c77210fb7022100acfbb8f9e67bc2e5a87bcf2be6c3f45baac686d06878ed67cf98b4763ba3b3ce:922c64590222798bb761d5b6d8e72950