id: phpinfo-files info: name: PHPinfo Page - Detect author: pdteam,daffainfo,meme-lord,dhiyaneshDK,wabafet severity: low description: | PHPinfo page was detected. The output of the phpinfo() command can reveal sensitive and detailed PHP environment information. remediation: Remove PHP Info pages from publicly accessible sites, or restrict access to authorized users only. classification: cwe-id: CWE-200 metadata: max-request: 22 tags: config,exposure,phpinfo http: - method: GET path: - "{{BaseURL}}/php.php" - "{{BaseURL}}/phpinfo.php" - "{{BaseURL}}/info.php" - "{{BaseURL}}/infophp.php" - "{{BaseURL}}/php_info.php" - "{{BaseURL}}/test.php" - "{{BaseURL}}/i.php" - "{{BaseURL}}/asdf.php" - "{{BaseURL}}/pinfo.php" - "{{BaseURL}}/phpversion.php" - "{{BaseURL}}/time.php" - "{{BaseURL}}/index.php" - "{{BaseURL}}/temp.php" - "{{BaseURL}}/old_phpinfo.php" - "{{BaseURL}}/infos.php" - "{{BaseURL}}/linusadmin-phpinfo.php" - "{{BaseURL}}/php-info.php" - "{{BaseURL}}/dashboard/phpinfo.php" - "{{BaseURL}}/_profiler/phpinfo.php" - "{{BaseURL}}/_profiler/phpinfo" - "{{BaseURL}}/?phpinfo=1" - "{{BaseURL}}/l.php?act=phpinfo" stop-at-first-match: true matchers-condition: and matchers: - type: word part: body words: - "PHP Extension" - "PHP Version" condition: and - type: status status: - 200 extractors: - type: regex part: body group: 1 regex: - '>PHP Version <\/td>([0-9.]+)' # digest: 4a0a00473045022060363e2a0e7bcc47443af57e70840784dafbe7e53d82af0620c4bdbbbb309653022100aba901498f711b1b4ad57c94bf6641a629e19ffa6e0ce8be4e97c30445366a4c:922c64590222798bb761d5b6d8e72950