nuclei-templates/exposures/configs/sftp-credentials-exposure.yaml

27 lines
488 B
YAML

id: sftp-credentials-exposure
info:
name: SFTP credentials exposure
author: sheikhrishad
severity: medium
tags: config,ftp
requests:
- method: GET
path:
- "{{BaseURL}}/sftp-config.json"
- "{{BaseURL}}/ftpsync.settings"
matchers-condition: and
matchers:
- type: word
words:
- "file_permissions"
- "extra_list_connections"
part: body
condition: and
- type: status
status:
- 200