id: insecure-crossdomain info: name: Insecure cross-domain.xml file author: Borna Nematzadeh,nadino severity: info reference: - https://www.acunetix.com/vulnerabilities/web/insecure-crossdomain-xml-file metadata: max-request: 1 tags: exposure,generic,files http: - method: GET path: - "{{BaseURL}}/crossdomain.xml" matchers-condition: and matchers: - type: status status: - 200 - type: word part: body words: - '' # digest: 490a0046304402203e6bccb2118d01eb543ba50ae80bf2f01219c17cfcd43c47e69739cdc527ab5902206c5122b38d953a9394d386c984007a001155754b99de06aedbf7393753ff997f:922c64590222798bb761d5b6d8e72950