json-web-services-api<\\/title>.*" - type: word part: header words: - "text/html" - type: status status: - 200 # digest: 490a0046304402202a3fc3e111a0cd3f451976d14a9288d0ac152c8ee35aa994564966558ef6dc26022023060ab496389f62884358641c377f3001500745fbff905b82e12baeb0c73167:922c64590222798bb761d5b6d8e72950

id: liferay-jsonws

info:
  name: Liferay /api/jsonws - API Exposed
  author: DhiyaneshDk
  severity: low
  description: Liferay /api/jsonws - API is Exposed.
  reference:
    - https://github.com/ilmila/J2EEScan/blob/master/src/main/java/burp/j2ee/issues/impl/LiferayAPI.java
    - https://liferay.dev/blogs/-/blogs/securing-the-api-jsonws-ui?_com_liferay_blogs_web_portlet_BlogsPortlet_showFlags=true&scroll=_com_liferay_blogs_web_portlet_BlogsPortlet_discussionContainer
  classification:
    cpe: cpe:2.3:a:liferay:liferay_portal:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: liferay
    product: liferay_portal
    shodan-query: title:"Liferay"
  tags: liferay,exposure,api,misconfig

http:
  - method: GET
    path:
      - "{{BaseURL}}/api/jsonws"

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - ".*<title>json-web-services-api<\\/title>.*"

      - type: word
        part: header
        words:
          - "text/html"

      - type: status
        status:
          - 200
# digest: 490a0046304402202a3fc3e111a0cd3f451976d14a9288d0ac152c8ee35aa994564966558ef6dc26022023060ab496389f62884358641c377f3001500745fbff905b82e12baeb0c73167:922c64590222798bb761d5b6d8e72950