id: cve-2018-11759 info: name: Apache Tomcat JK Status Manager Access author: Harsh Bothra severity: medium # Source:- https://github.com/immunIT/CVE-2018-11759 requests: - method: GET path: - '{{BaseURL}}/jkstatus' - '{{BaseURL}}/jkstatus;' matchers-condition: and matchers: - type: status status: - 200 - type: word words: - "JK Status Manager"