nuclei-templates/misconfiguration/cx-cloud-upload-detect.yaml

id: cx-cloud-upload-detect

info:
  name: CX Cloud Unauthenticated Upload Detect
  author: dhiyaneshDk
  severity: info
  tags: upload

requests:
  - method: GET
    path:
      - '{{BaseURL}}/upload.jsp'
    matchers:
      - type: word
        words:
          - "<HEAD><TITLE>Display file upload form to the user</TITLE></HEAD>"
        condition: and