id: pa11y-dashboard

info:
  name: Pa11y Dashboard Exposure
  author: tess
  severity: low
  description: Pa11y Dashboard is exposed.
  metadata:
    verified: true
    max-request: 1
    shodan-query: title:"Pa11y Dashboard"
  tags: misconfig,exposure,pa11y

http:
  - method: GET
    path:
      - '{{BaseURL}}'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "Pa11y Dashboard"
          - "Add new URL"
        condition: and

      - type: word
        part: header
        words:
          - "text/html"

      - type: status
        status:
          - 200
# digest: 4a0a0047304502202dbeaf3de2f058faeb1cb04c1d85de2293b58b5d19c86a37934d5505fcca1ecf022100c624fc06b310ddbb24d9fd2f80e20b93f8da917add0fb2e2b4b21c2f0e856894:922c64590222798bb761d5b6d8e72950