apdisk-disclosure: Apdisk - File Disclosure

日期: 2025-08-01 | 影响软件: Apdisk | POC: 已公开

漏洞描述

Apdisk internal file is exposed.

PoC代码[已公开]

id: apdisk-disclosure

info:
  name: Apdisk - File Disclosure
  author: DhiyaneshDk
  severity: low
  description: Apdisk internal file is exposed.
  reference:
    - https://discussions.apple.com/thread/250354761
  metadata:
    verified: true
    max-request: 1
    shodan-query: html:"Apdisk"
  tags: exposure,files,apdisk,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/.apdisk"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "<plist version="
          - "<key>"
          - "<string>"
        condition: and

      - type: word
        part: header
        words:
          - "text/xml"
# digest: 4a0a0047304502204e6ee29e6fe6d09a5077b1deab456d7595a7d705a19384230b8918f079c280f3022100c1412c1ad588a87e1f31f7b77959a60fca9b192781f47613074f355810eede3e:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/exposures/files/apdisk-disclosure.yaml