shoppable-token: Shoppable Service Auth Token

日期: 2025-08-01 | 影响软件: shoppable | POC: 已公开

漏洞描述

PoC代码[已公开]

id: shoppable-token

info:
  name: Shoppable Service Auth Token
  author: philippedelteil
  severity: unknown
  reference:
    - https://ask.shoppable.com/knowledge/quick-start-api-guide
  metadata:
    max-request: 1
  tags: exposure,shoppable,token,auth,service,generic,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers:
      - type: word
        part: body
        words:
          - data-shoppable-auth-token
# digest: 4b0a00483046022100ed7a423cb837b986a51f519b37a73201ea8d40fbecb6132f6121a74a87941d60022100c1915a0d9087ac393762ffa416f32dd57616eecf57f5c55ce9be9110243f945e:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/exposures/tokens/generic/shoppable-token.yaml