id: docker-cloud info: name: Docker Cloud Yaml - File Disclosure author: DhiyaneshDK severity: medium reference: https://www.exploit-db.com/ghdb/7959 metadata: verified: true google-query: intitle:"index of" "docker-cloud.yml" tags: exposure,cloud,devops,docker requests: - method: GET path: - "{{BaseURL}}/docker-cloud.yml" matchers-condition: and matchers: - type: regex regex: - '(?m)^ image:' - '(?m)^ ports:' condition: and - type: word part: header words: - "application/json" - "text/html" negative: true condition: or - type: status status: - 200