nuclei-templates/exposures/configs/alibaba-canal-info-leak.yaml

43 lines
1016 B
YAML

id: alibaba-canal-info-leak
info:
name: Alibaba Canal Info Leak - Detect
author: pikpikcu
severity: info
description: Alibaba Canal login panel was detected.
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
reference:
- https://github.com/alibaba/canal/issues/632
- https://netty.io/wiki/reference-counted-objects.html
- https://my.oschina.net/u/4581879/blog/4753320
tags: config,exposure,alibaba
requests:
- method: GET
path:
- "{{BaseURL}}/api/v1/canal/config/1/1"
headers:
Content-Type: application/json
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- "application/json"
condition: and
part: header
- type: word
words:
- "ncanal.aliyun.accessKey"
- "ncanal.aliyun.secretKey"
condition: and
part: body
# Enhanced by mp on 2023/02/05