nuclei-templates/http/exposed-panels/open-virtualization-manager...

43 lines
1.6 KiB
YAML

id: open-virtualization-manager-panel
info:
name: Open Virtualization Userportal & Webadmin Panel Detection
author: idealphase
severity: info
description: Open Virtualization Userportal & Webadmin panels were detected. Open Virtualization Manager is an open-source distributed virtualization solution designed to manage enterprise infrastructure. oVirt uses the trusted KVM hypervisor and is built upon several other community projects, including libvirt, Gluster, PatternFly, and Ansible.
reference:
- https://www.ovirt.org/
- https://www.ovirt.org/dropped/admin-guide/virt/console-client-resources.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cwe-id: CWE-668
metadata:
max-request: 2
shodan-query: title:"Ovirt-Engine"
google-query: intitle:"Ovirt-Engine"
tags: panel,ovirt,oss
http:
- method: GET
path:
- '{{BaseURL}}/ovirt-engine/userportal/'
- '{{BaseURL}}/ovirt-engine/webadmin/'
matchers-condition: and
matchers:
- type: word
words:
- '"application_title":"oVirt Engine User Portal"'
- '"application_title":"oVirt Engine Web Administration"'
condition: or
- type: status
status:
- 200
extractors:
- type: regex
group: 1
regex:
- '"application_title":"(([a-zA-Z]+\s)*[a-zA-Z]+)"'
# digest: 4b0a00483046022100ee8b68006599fa08d1da3f4118d5cb5609298997d3d3010128276908a137e38f022100bb80811d13f9afd9204d42389b2aa6a1ec3fc9b337a8e31e53f2ee23e96ffcfa:922c64590222798bb761d5b6d8e72950