perl-status: Apache Mod_perl Status Page - Detect

日期: 2025-08-01 | 影响软件: Apache | POC: 已公开

漏洞描述

Apache mod_perl status page was detected.

PoC代码[已公开]

id: perl-status

info:
  name: Apache Mod_perl Status Page - Detect
  author: pdteam
  severity: medium
  description: Apache mod_perl status page was detected.
  reference:
    - https://perl.apache.org/
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cwe-id: CWE-200
  metadata:
    max-request: 1
  tags: config,exposure,apache,status,vuln

http:
  - method: GET
    path:
      - '{{BaseURL}}/perl-status'

    matchers:
      - type: word
        words:
          - "<title>Apache2::Status"
          - "Perl version"
        condition: and
# digest: 490a0046304402200fc2076809f5655f2915368947fdb284e1a42d1db8d741d784a69485c2c890330220430144bbdc59066ceb81ce54ef759c5c3d0837678587c739206bba81f2fe7426:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/exposures/configs/perl-status.yaml

相关漏洞推荐