47 lines
1.5 KiB
YAML
47 lines
1.5 KiB
YAML
id: untangle-admin-login
|
|
|
|
info:
|
|
name: Untangle Administrator Login Panel - Detect
|
|
author: irshad ahamed
|
|
severity: info
|
|
description: |
|
|
Untangle Administrator is a centralized web-based management console that allows administrators to efficiently configure, monitor, and control various network security and filtering features provided by the Untangle NG Firewall, ensuring robust network protection and policy enforcement.
|
|
reference:
|
|
- https://edge.arista.com/ng-firewall/
|
|
classification:
|
|
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
|
cwe-id: CWE-200
|
|
cpe: cpe:2.3:a:untangle:ng_firewall:*:*:*:*:*:*:*:*
|
|
metadata:
|
|
verified: true
|
|
max-request: 2
|
|
vendor: untangle
|
|
product: ng_firewall
|
|
shodan-query:
|
|
- title:"Untangle Administrator Login"
|
|
- http.title:"untangle administrator login"
|
|
fofa-query: title="untangle administrator login"
|
|
google-query: intitle:"untangle administrator login"
|
|
tags: panel,untangle,admin,login
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- '{{BaseURL}}'
|
|
- '{{BaseURL}}/auth/login'
|
|
|
|
stop-at-first-match: true
|
|
host-redirects: true
|
|
max-redirects: 2
|
|
|
|
matchers-condition: and
|
|
matchers:
|
|
- type: word
|
|
part: body
|
|
words:
|
|
- "Untangle Administrator Login"
|
|
|
|
- type: status
|
|
status:
|
|
- 200
|
|
# digest: 490a0046304402203b234522eafc56d8fde405ec893da9689c4871e0a9a0dbbcc9ad75553220227f02203ad37b1e1369a77cf7567bc3e1605d022eee705a213785de9e51295b308b1571:922c64590222798bb761d5b6d8e72950 |