cobbler-exposed-directory: Exposed Cobbler Directories

日期: 2025-08-01 | 影响软件: cobbler | POC: 已公开

漏洞描述

Searches for exposed Cobbler Directories

PoC代码[已公开]

id: cobbler-exposed-directory

info:
  name: Exposed Cobbler Directories
  author: c-sh0
  severity: medium
  description: Searches for exposed Cobbler Directories
  metadata:
    max-request: 2
  tags: cobbler,exposure,misconfig,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/cobbler/"
      - "{{BaseURL}}/cblr/"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200

      - type: word
        part: body
        words:
          - "Index of /cobbler"
          - "Index of /cblr"
        condition: or
# digest: 4b0a00483046022100d25dcd7f2c57a0e80e48a16fbc0764d70413e633810053d0c74169410b37144c022100a8e7b61a73b75905e9b179808bbdd7ead170a2fb1226d18167b5fcc0570425ab:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/misconfiguration/cobbler-exposed-directory.yaml

相关漏洞推荐