nuclei-templates/exposures/configs/configuration-listing.yaml

26 lines
558 B
YAML

id: configuration-listing
info:
name: Sensitive Configuration Files Listing
author: j33n1k4
severity: medium
description: directory listing of sensitive files
reference: https://www.exploit-db.com/ghdb/7014
tags: config,listing,exposure
requests:
- method: GET
path:
- "{{BaseURL}}/config/"
matchers-condition: and
matchers:
- type: word
words:
- "Index of /configs"
- "Parent Directory"
condition: and
- type: status
status:
- 200