ntfy-web-exposure: NTFY Web - Exposure

漏洞描述

PoC代码[已公开]

id: ntfy-web-exposure

info:
  name: NTFY Web - Exposure
  author: DhiyaneshDk
  severity: medium
  description: |
    Publicly exposed NTFY web interface allowing unauthorized publish or subscribe access.
  metadata:
    verified: true
    max-request: 1
    shodan-query: html:"ntfy.sh"
  tags: exposure,ntfy,web,misconfig,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/settings"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "<title>ntfy web</title>"

      - type: status
        status:
          - 200
# digest: 4a0a0047304502206add1b9db535c00508a479b383545a581e43465a952275f0d4b0d71ae43278d0022100f168b1ee5c982d7f7e80023b8c06cbd251a4fcc54d21844346a54880c76cd8e9:922c64590222798bb761d5b6d8e72950

相关漏洞推荐

• POC CVE-2023-33960: OpenProject < 12.5.4 - Project Identifiers Exposure
• POC dagster-webserver-ui-exposure: Dagster - Webserver UI Exposure
• POC frigate-api-exposure: Frigate NVR - API Exposure
• POC batflat-sqlite-exposure: Batflat SQLite Database - Exposure
• POC netlify-headers-config-exposure: Netlify Headers Configuration - Exporsure
• POC selenium-grid-exposure: Selenium Grid Exposure
• POC aws-buildspec-exposure: AWS CodeBuild Build Spec - Exposure
• POC gcloudignore-file-exposure: Google Cloud Ignore File Exposure
• POC joe-deadjoe-file-exposure: Joe Editor DEADJOE File - Exposure
• POC postgres-history-exposure: PostgreSQL History - Exposure
• POC vscode-mcp-json: Visual Studio Code MCP Configuration ("mcp.json") Exposure
• POC cacti-log-exposure: Cacti Log - Exposure
• POC magento-debug-log-exposure: Magento Debug Log - Exposure