31 lines
986 B
YAML
31 lines
986 B
YAML
id: woodwing-phpinfo
|
|
|
|
info:
|
|
name: Woodwing Studio Server - Phpinfo Config
|
|
author: pdteam
|
|
severity: medium
|
|
reference:
|
|
- https://twitter.com/ynsmroztas/status/1680961398011047936
|
|
metadata:
|
|
shodan-query: http.title:"WoodWing Studio Server"
|
|
fofa-query: title=="WoodWing Studio Server"
|
|
tags: woodwing,phpinfo
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}/StudioServer/server/wwtest/phpinfo.php"
|
|
- "{{BaseURL}}/server/wwtest/phpinfo.php"
|
|
|
|
stop-at-first-match: true
|
|
redirects: true
|
|
max-redirects: 2
|
|
matchers:
|
|
- type: dsl
|
|
dsl:
|
|
- contains(tolower(body), 'woodwing')
|
|
- contains(tolower(body), 'php extension')
|
|
- contains(tolower(body), 'php version')
|
|
- status_code == 200
|
|
condition: and
|
|
# digest: 4a0a0047304502205b532060e4d24e254ede1ffdd0d3e31e3642c1931b7ab72546dfd72836cc360e022100a0ecf3acf8a30bc007e160e5534968c6bb2a087f34ab8db46f87b6ff637c1792:922c64590222798bb761d5b6d8e72950 |