id: php-ini info: name: Php.ini File Disclosure author: geeknik,DhiyaneshDK severity: low description: php.ini file is exposed. reference: https://www.php.net/manual/en/configuration.file.php metadata: verified: true max-request: 1 shodan-query: php.ini product: php vendor: php tags: config,exposure,files classification: cpe: cpe:2.3:a:php:php:*:*:*:*:*:*:*:* http: - method: GET path: - "{{BaseURL}}/php.ini" matchers-condition: and matchers: - type: word part: body words: - "[PHP]" - "short_open_tag" - "safe_mode" - "expose_php" condition: and - type: status status: - 200 # digest: 4a0a0047304502204791244ace57877a5bc4296a3919bcde88b1c690125558b459e4b90bf3ddc9a9022100c3d176771453ff2c912b50c6e2b76277e1080a1510b668914cf887991226e6a6:922c64590222798bb761d5b6d8e72950