id: avtech-dvr-exposure

info:
  name: Avtech AVC798HA DVR Information Exposure
  description: Under the /cgi-bin/nobody folder every CGI script can be accessed without authentication.
  reference: http://www.avtech.com.tw/
  author: geeknik
  severity: low
  tags: dvr,exposure,avtech

requests:
  - method: GET
    path:
      - "{{BaseURL}}/cgi-bin/nobody/Machine.cgi?action=get_capability"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200
      - type: word
        words:
          - "Firmware.Version="
          - "MACAddress="
          - "Product.Type="
        condition: and