id: unauth-hoteldruid-panel
info:
  name: Unauthenticated Hoteldruid Panel
  author: princechaddha
  severity: high
  reference: https://www.hoteldruid.com/
  tags: hoteldruid,panel,unauth

requests:
  - method: GET
    path:
      - "{{BaseURL}}/hoteldruid/inizio.php"
      - "{{BaseURL}}/inizio.php"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200

      - type: word
        part: body
        words:
          - "<title> HotelDruid </title>"
          - "<b>INSERT:</b>"
          - "<b>TABLES:</b>"
        condition: and