id: corebos-htaccess info: name: CoreBos - .htaccess File Exposure author: arafatansari severity: info description: | CoreBos was discovered to have .htaccess file exposed to public which includes sensitive information. reference: - https://huntr.dev/bounties/5b0fe6e3-4ca1-44ae-8875-d7e6c065432e/ metadata: verified: true max-request: 1 shodan-query: http.html:"corebos" tags: exposure,corebos,huntr,misconfig http: - method: GET path: - '{{BaseURL}}/htaccess.txt' matchers-condition: and matchers: - type: word part: body words: - 'Options -Indexes' - '