id: wp-haberadam-idor

info:
  name: WordPress Themes Haberadam JSON API - IDOR and Path Disclosure
  author: pussycat0x
  severity: low
  description: This template is designed to detect a misconfiguration vulnerability in WordPress themes that use the Haberadam JSON API. This vulnerability can lead to an Insecure Direct Object Reference (IDOR) and path disclosure, potentially exposing sensitive information.
  reference:
    - https://cxsecurity.com/issue/WLB-2021090078
  metadata:
    max-request: 2
    google-query: inurl:/wp-content/themes/haberadam/
  tags: wordpress,idor,wp-theme,disclosure

http:
  - method: GET
    path:
      - '{{BaseURL}}/wp-content/themes/haberadam/api/mobile-info.php?id='
      - '{{BaseURL}}/blog/wp-content/themes/haberadam/api/mobile-info.php?id='

    stop-at-first-match: true

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - '"status"'
          - '"hava"'
          - '"degree"'
          - '"icon"'
        condition: and

      - type: status
        status:
          - 200

      - type: word
        part: header
        words:
          - text/html

# digest: 4a0a00473045022100d9e8e93b959b19bfd97ed5cd26aa422c7c43479e377c47e585b21cc373d67569022047b39f6bc5f1102233c9c860ebfbd32cd7c23818903195ffbbda038a7e0ef149:922c64590222798bb761d5b6d8e72950