gitlab-panel: GitLab Panel

日期: 2025-09-01 | 影响软件: GitLab Panel | POC: 已公开

漏洞描述

fofa app="GitLab"

PoC代码[已公开]

id: gitlab-panel

info:
    name: GitLab Panel
    author: zan8in
    severity: info
    description: fofa app="GitLab"
    verified: true

rules:
    r0:
        request:
            method: GET
            path: /explore
        expression: response.status == 200 && response.body.ibcontains(b"<title>Projects · Explore · GitLab</title>")
    r1:
        request:
            method: GET
            path: /users/sign_in
        expression: response.status == 200 && (resp.raw_header.ibcontains(b"_gitlab_session") || resp.body.bcontains(b"gon.default_issues_tracker") || resp.body.bcontains(b"GitLab Community Edition"))
expression: r0() || r1()
来源: https://github.com/zan8in/afrog/blob/main/pocs/afrog-pocs/fingerprinting/gitlab-panel.yaml

相关漏洞推荐