id: glpi-project_glpi

info:
  name: GLPI
  author: dogasantos,daffainfo,ricardomaia,dhiyaneshDk
  severity: info
  reference:
    - https://glpi-project.org/
    - https://www.exploit-db.com/ghdb/7002
  metadata:
    verified: true
    shodan-query: http.title:"GLPI"
  tags: glpi,edb,panel

requests:
  - method: GET
    path:
      - "{{BaseURL}}"
      - "{{BaseURL}}/CHANGELOG.md"
      - "{{BaseURL}}/glpi/"

    redirects: true
    max-redirects: 2
    stop-at-first-match: false
    matchers:
      - type: word
        case-insensitive: true
        words:
          - "GLPI"
          - "glpi-project.org"
        condition: and
    extractors:
      - type: regex
        name: version
        part: body
        group: 1
        regex:
          - '(?i)base\.min\.js\?v=([\d.|\d]+)">'
          - '(?i)jquery\.min\.js\?v=([\d.|\d]+)">'
          - '(?i)# GLPI changes\n\n.*\n.*\n.*\n##\s\[(\d+\.\d+|\d+\.\d+\.\d+)\]'
          - '(?i)GLPI.*?([\d.|\d]+).copyright'