29 lines
650 B
YAML
29 lines
650 B
YAML
id: zblog-admin-panel
|
|
|
|
info:
|
|
name: Z-BlogPHP Admin Panel Exposed
|
|
author: Aayush Vishnoi
|
|
severity: info
|
|
description: Z-BlogPHP is CMS website building system based on PHP programming language. The Z-BlogPHP has admin panel exposed via zb_system/login.php endpoint.
|
|
reference:
|
|
- https://github.com/zblogcn/zblogphp
|
|
metadata:
|
|
verified: true
|
|
shodan-query: http.title:zblog
|
|
tags: zblog,panel
|
|
|
|
requests:
|
|
- method: GET
|
|
path:
|
|
- '{{BaseURL}}/zb_system/login.php'
|
|
|
|
matchers:
|
|
- type: word
|
|
part: body
|
|
words:
|
|
- "<title>Z-Blog</title>"
|
|
|
|
- type: status
|
|
status:
|
|
- 200
|