nuclei-templates/http/technologies/thinkphp-detect.yaml

41 lines
924 B
YAML

id: thinkphp-detect
info:
name: ThinkPHP - Detect
author: pwnhxl
severity: info
description: ThinkPHP was detected.
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0
cwe-id: CWE-200
metadata:
verified: true
max-request: 2
shodan-query: title:"ThinkPHP"
fofa-query: app="ThinkPHP"
tags: thinkphp,tech,detect,intrusive
http:
- method: GET
path:
- "{{BaseURL}}"
- "{{BaseURL}}/?s={{randstr}}&c={{randstr}}&a={{randstr}}&m={{randstr}}"
stop-at-first-match: true
matchers-condition: or
matchers:
- type: word
part: body
words:
- '/Library/Think/'
- '{ Fast & Simple OOP PHP Framework } -- [ WE CAN DO IT JUST THINK ]'
- '/thinkphp/library/think/'
condition: or
- type: word
part: header
words:
- 'X-Powered-By: ThinkPHP'