44 lines
1.1 KiB
YAML
44 lines
1.1 KiB
YAML
id: wso2-management-console
|
|
|
|
info:
|
|
name: WSO2 Management Console Login Panel - Detect
|
|
author: dhiyaneshDK,johnk3r
|
|
severity: info
|
|
description: WSO2 Management Console login panel was detected.
|
|
reference:
|
|
- https://www.exploit-db.com/ghdb/5691
|
|
classification:
|
|
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
|
cvss-score: 0
|
|
cwe-id: CWE-200
|
|
metadata:
|
|
vendor: wso2
|
|
product: api_manager
|
|
max-request: 1
|
|
shodan-query: http.favicon.hash:1398055326
|
|
tags: panel,wso2,edb
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- '{{BaseURL}}/carbon/admin/login.jsp'
|
|
|
|
matchers-condition: and
|
|
matchers:
|
|
- type: word
|
|
part: response
|
|
words:
|
|
- "<title>WSO2 Management Console</title>"
|
|
- "WSO2 Carbon Server"
|
|
condition: or
|
|
|
|
- type: status
|
|
status:
|
|
- 200
|
|
|
|
extractors:
|
|
- type: kval
|
|
part: header
|
|
kval:
|
|
- server
|
|
# digest: 490a00463044022063f9e0f7cdd3e26fcf656f0f6538810bbfb2c9bff1bcf8050486a69817960de6022043f4b4cc7c009345040bf3d5d5abc8bc7c8dfcd486bcb5a9ac8ff2ad9855820e:922c64590222798bb761d5b6d8e72950 |