id: grails-database-admin-console info: name: Grails Admin Console Panel - Detect author: emadshanab severity: medium description: Grails Admin Console panel was detected. classification: cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N cvss-score: 5.3 cwe-id: CWE-200 reference: - https://www.acunetix.com/vulnerabilities/web/grails-database-console/ - http://h2database.com/html/quickstart.html#h2_console tags: grails,panel metadata: max-request: 2 http: - method: GET path: - '{{BaseURL}}/dbconsole/' - '{{BaseURL}}/h2-console/' matchers-condition: and matchers: - type: word words: - "H2 Console" - type: word words: - "Sorry, remote connections ('webAllowOthers') are disabled on this server" negative: true