id: ambari-exposure

info:
  name: Apache Ambari Exposure Admin Login Panel
  author: pdteam
  severity: info
  description: An Apache Ambari panel was discovered.
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
    cvss-score: 0
    cwe-id: CWE-668
  metadata:
    max-request: 1
  tags: panel,apache,ambari,exposure

http:
  - method: GET
    path:
      - '{{BaseURL}}'

    matchers:
      - type: word
        words:
          - '<title>Ambari</title>'
          - 'href="http://www.apache.org/licenses/LICENSE-2.0"'
        condition: and

# digest: 490a004630440220544aae7cbecb6d11b6a7e12bc9b1e744bb8f5b8f111bdf2cdf819122ea6cfc96022031d80f2d81ba3674354e839f973d996463ef6f27525f632cc10be84ed9ab48e7:922c64590222798bb761d5b6d8e72950