46 lines
1.3 KiB
YAML
46 lines
1.3 KiB
YAML
id: deployment-ini
|
|
|
|
info:
|
|
name: FTP Deployment Config File - Exposure
|
|
author: Michal Mikolas (nanuqcz)
|
|
severity: medium
|
|
description: |
|
|
Config file for "FTP deployment" utility usually contains server's FTP credentials in plain text.
|
|
remediation: |
|
|
Delete the config file from server & add it to `ignore` section of the deployment file. Or block access to the file using `.htaccess` on the server.
|
|
reference:
|
|
- https://github.com/dg/ftp-deployment
|
|
metadata:
|
|
max-request: 12
|
|
vendor: dg
|
|
product: "ftp-deployment"
|
|
tags: config,exposure,dg
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}{{paths}}"
|
|
payloads:
|
|
paths:
|
|
- "/deployment.ini"
|
|
- "/deploy.ini"
|
|
- "/production.ini"
|
|
- "/prod.ini"
|
|
- "/deployment.production.ini"
|
|
- "/deployment.prod.ini"
|
|
- "/deploy.production.ini"
|
|
- "/deploy.prod.ini"
|
|
- "/server.ini"
|
|
- "/ftp.ini"
|
|
- "/ftps.ini"
|
|
- "/sftp.ini"
|
|
|
|
stop-at-first-match: true
|
|
|
|
matchers:
|
|
- type: regex
|
|
regex:
|
|
- "^remote\\s*=\\s*"
|
|
- '^\[(.*?)\]$'
|
|
condition: and
|
|
# digest: 4a0a00473045022100d52ae9e890cba7ed8c1f2e2ce61d3d79aee0ac538dc5dc2b4ed6def8c6cf919c02205f24f6b7b9ece29029bcc0f639eb52cb6e9a24113d718711ddaf4fa38cec7154:922c64590222798bb761d5b6d8e72950 |