nuclei-templates/exposures/files/webpack-sourcemap-disclosur...

34 lines
630 B
YAML

id: webpack-sourcemap-disclosure
info:
name: Webpack Sourcemap Disclosure
author: dhiyaneshDk
severity: info
tags: exposure,files
requests:
- method: GET
path:
- "{{BaseURL}}"
- "{{RootURL}}/{{Path}}/{{map}}.js.map"
matchers-condition: and
matchers:
- type: word
words:
- '"version":'
- '"file":'
- '"sources":'
condition: and
- type: status
status:
- 200
extractors:
- type: regex
internal: true
name: map
group: 1
regex:
- "sourceMappingURL=([a-z0-9.]+).js.map"