nuclei-templates/http/exposed-panels/adminer-panel-detect.yaml

56 lines
1.5 KiB
YAML

id: adminer-panel-detect
info:
name: Adminer Login Panel - Detect
author: random_robbie,meme-lord
severity: info
description: Adminer login panel was detected.
reference:
- https://blog.sorcery.ie/posts/adminer/
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0
cwe-id: CWE-200
# <= 4.2.4 can have unauthenticated RCE via SQLite driver
# <= 4.6.2 can have LFI via MySQL LOAD DATA LOCAL
# Most versions have some kind of SSRF usability
# Is generally handy if you find SQL creds
metadata:
vendor: adminer
product: adminer
max-request: 741
tags: panel,fuzz,adminer,login,sqli
http:
- raw:
- |
GET {{path}} HTTP/1.1
Host: {{Hostname}}
Accept: application/json, text/plain, */*
Referer: {{BaseURL}}
payloads:
path: helpers/wordlists/adminer-paths.txt
threads: 50
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
condition: and
words:
- "- Adminer</title>"
- "partial(verifyVersion"
- type: status
status:
- 200
extractors:
- type: regex
part: body
group: 1
regex:
- '<span class="version">([0-9.]+)'
# digest: 4b0a00483046022100d1fcc4e636bdb5f3961f4541594d60ac0dc86688a2cda52de2530fbf4ca9b770022100d68508fb2d73378f62f821365ccc2f11f063da2ae73ded7792159a9a1c97e373:922c64590222798bb761d5b6d8e72950