apollo-sandbox-ui-exposed: Apollo Sandbox UI - Exposed

日期: 2025-08-01 | 影响软件: Apollo Sandbox UI | POC: 已公开

漏洞描述

Detects the Apollo Sandbox developer interface exposed in production environments, which could facilitate schema discovery or testing by unauthorized users.

PoC代码[已公开]

id: apollo-sandbox-ui-exposed

info:
  name: Apollo Sandbox UI - Exposed
  author: Hamza Sahin
  severity: low
  description: |
    Detects the Apollo Sandbox developer interface exposed in production environments, which could facilitate schema discovery or testing by unauthorized users.
  reference:
    - https://www.apollographql.com/docs/studio/sandbox/
  metadata:
    verified: true
    max-request: 1
    shodan-query: http.html:"Apollo Sandbox"
  tags: apollo,misconfig,exposure,graphql,vuln

http:
  - raw:
      - |
        GET / HTTP/1.1
        Host: {{Hostname}}
        Accept: text/html

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains_any(body, "<title>Apollo Server", "<title>Apollo Router")'
          - 'contains_any(body, "Apollo Sandbox", "apollo.dev")'
        condition: and
# digest: 490a004630440220313d183f5efcd02855fe252d1d9c878898442a7ce3ed52bb477cba09229f0f4b0220073e6d618f57417469919ef8b5237cb23c11ca60a55a77439fa78e8217c12175:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/misconfiguration/graphql/graphql-apollo-sandbox.yaml