nuclei-templates/http/exposed-panels/securenvoy-panel.yaml

39 lines
1.1 KiB
YAML

id: securenvoy-panel
info:
name: SecurEnvoy Login Panel - Detect
author: 0xrod,righettod
severity: info
description: SecurEnvoy login panel was detected.
reference:
- https://securenvoy.com/
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cwe-id: CWE-200
metadata:
max-request: 4
shodan-query: "http.title:\"securenvoy\""
tags: panel,securenvoy
http:
- method: GET
path:
- '{{BaseURL}}/secadmin/'
- '{{BaseURL}}/securenvoy/'
- '{{BaseURL}}/secenrol/'
- '{{BaseURL}}/RDWeb'
matchers-condition: and
matchers:
- type: word
words:
- '<base href="/secadmin/">'
- 'SecurEnvoy Portal'
- 'SecurEnvoy Tokenless Authentication'
- 'Manage My Token : Authentication'
part: body
- type: status
status:
- 200
# digest: 4a0a00473045022100fcc5d02d6df7b0619a1e9f8c0d6cc4059a492d4f068303dc220ed4f622bf02be02201dd5690bb0578de8225ecb4b9790d8da0887b599366081a3ac725d2b0259e112:922c64590222798bb761d5b6d8e72950