id: phpmyfaq-installer

info:
  name: phpMyFAQ Installation - Exposure
  author: ritikchaddha
  severity: high
  description: phpMyFAQ installation is exposed.
  metadata:
    verified: true
    max-request: 1
    fofa-query: "phpMyFAQ-setup"
  tags: misconfig,phpmyfaq,install

http:
  - method: GET
    path:
      - "{{BaseURL}}/setup/index.php"

    matchers-condition: or
    matchers:
      - type: word
        part: body
        words:
          - '<title>phpMyFAQ'
          - 'Setup</title>'
        condition: and

      - type: word
        part: header
        words:
          - 'phpmyfaq-setup'
# digest: 490a0046304402201791f7ef0c860c7e565d6b7f79b3552d97890f2ef5a32e3ea9e1e83e8e05dc7f022000ceca0e611b72fd804a249e967c96b9d9762df4abcd70c1de5cf4aaeece0423:922c64590222798bb761d5b6d8e72950