id: symfony-fosjrouting-bundle info: name: Symfony FOSJsRoutingBundle author: DhiyaneshDk severity: medium reference: - https://packagist.org/packages/friendsofsymfony/jsrouting-bundle metadata: verified: true shodan-query: http.html:"symfony Profiler" tags: misconfig,symfony http: - method: GET path: - '{{BaseURL}}/js/routing?callback=fos.Router.setDatafoobarfoo' matchers-condition: and matchers: - type: word part: body words: - '/**/fos.Router.setDatafoobarfoo({' - 'routes' condition: and - type: word part: header words: - "application/javascript" - type: status status: - 200