漏洞描述
Detected exposed CodeKit configuration files that may have revealed sensitive project information, including file paths, build settings, hooks, and project structure.
codekit-config-exposure: CodeKit Configuration Exposure
PoC代码[已公开]
id: codekit-config-exposure
info:
name: CodeKit Configuration Exposure
author: pussycat0x
severity: low
description: |
Detected exposed CodeKit configuration files that may have revealed sensitive project information, including file paths, build settings, hooks, and project structure.
reference:
- https://codekitapp.com/
- https://owasp.org/www-project-web-security-testing-guide/
metadata:
max-request: 3
verified: true
tags: codekit,config,exposure
http:
- method: GET
path:
- "{{BaseURL}}/config.codekit3"
- "{{BaseURL}}/config.codekit"
- "{{BaseURL}}/assets/js/config.codekit3"
stop-at-first-match: true
matchers:
- type: dsl
dsl:
- 'status_code == 200'
- 'contains_all(body, "This is a CodeKit 3 project config file","creatorBuild","uuidString")'
condition: and
# digest: 490a00463044022079c538e3be29a0fa7bd0bd1f48f29898e4f22888fe8b472b614c1bcbd8e024d202203cbbe835ec65405e62b80818e4de6a78d93a922a86034a2eb6cf67c2788ce2cd:922c64590222798bb761d5b6d8e72950