id: tasmota-install info: name: Tasmota Installer Exposure author: ritikchaddha severity: high description: Tasmota is susceptible to the Installation page exposure due to misconfiguration. metadata: verified: true max-request: 1 shodan-query: title:"Tasmota" product: tasmota vendor: tasmota_project tags: misconfig,tasmota,install,exposure classification: cpe: cpe:2.3:o:tasmota_project:tasmota:*:*:*:*:*:*:*:* http: - method: GET path: - "{{BaseURL}}/install/" matchers-condition: and matchers: - type: word part: body words: - "Install Tasmota" - "Tasmota Installer" condition: or - type: status status: - 200 # digest: 4a0a00473045022019eb38378f3d40f8a2f71fe25698efcee2357dec42b9514d95569c4fededa82a022100c812c07241e7e713db02ddaee366af9cb5670963e643898126265238791ead54:922c64590222798bb761d5b6d8e72950