id: vercel-source-exposure

info:
  name: Vercel Source Code Exposure
  author: hlop
  severity: medium
  description: |
    The Vercel Source Code Exposure misconfiguration allows an attacker to access sensitive source code files on the Vercel platform.
  reference:
    - https://vercel.com/docs/projects/overview#logs-and-source-protection
  metadata:
    max-request: 1
    fofa-query: cname_domain="vercel.app" || icon_hash="-2070047203"
  tags: vercel,exposure,misconfig

http:
  - method: GET
    path:
      - "{{BaseURL}}/_src"

    redirects: true
    max-redirects: 3

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "Deployment Source</title>"
          - "Deployment Source – Dashboard – Vercel"
        condition: or

      - type: word
        part: body
        words:
          - "<title>Login – Vercel</title>"
        negative: true

# digest: 4b0a00483046022100d755b980bf15a207f2e014f51819babff9571cba19d3637c6bd30ca99689152e022100e62fc4eceda91db3889373a7f38460633952c9d1ef102ce59ffcc5840d6330f0:922c64590222798bb761d5b6d8e72950