id: apache-jspwiki-ip-userenum

info:
  name: Apache JSPWiki - User IP Enumeration
  author: icarot
  severity: low
  description: |
    Enumerates the IP Address and users that is currently accessing an Apache JSPWiki web application, leading open source WikiWiki engine, feature-rich and built around standard JEE components (Java, servlets, JSP).
  classification:
    cpe: cpe:2.3:a:apache:jspwiki:*:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    verified: true
    vendor: apache
    product: jspwiki
  tags: jspwiki,apache,enumeration

http:
  - method: GET
    path:
      - "{{BaseURL}}/Wiki.jsp?page=SystemInfo"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - '<b>Active Wiki Users</b>'
          - 'Number of active sessions'
        condition: and

      - type: status
        status:
          - 200
# digest: 490a0046304402202ec08bfb8298012da6c27165085f7c4bab810bab42aa40ec63fed07dd5fb8d36022056c584edb9a5fde0ee4122175123b70a4519e5995ceb61a4964048f69a4a328c:922c64590222798bb761d5b6d8e72950