nuclei-templates/http/exposures/logs/rails-debug-mode.yaml

24 lines
630 B
YAML

id: rails-debug-mode
info:
name: Rails Debug Mode
author: pdteam
severity: medium
description: Rails debug mode is enabled.
metadata:
max-request: 1
tags: debug,rails,exposure,intrusive
http:
- method: GET
path:
- "{{BaseURL}}/{{randstr}}"
matchers:
- type: word
part: body
words:
- "Rails.root:"
- "Action Controller: Exception caught"
condition: and
# digest: 4a0a00473045022032b4ac1b752bc49bad211b086747a6b513069249d0119c514d0c5bb4273ce0f3022100bb3cffbab5dc40220beeb5c9a33a8b54794e5ab5086e8ec6aacbe479ec7c94a6:922c64590222798bb761d5b6d8e72950