snoop-servlet: Snoop Servlet - Information Disclosure

漏洞描述

The Snoop Servlet returns information about the HTTP request itself and sometimes. It could help an attacker to prepare more advanced attacks.

PoC代码[已公开]

id: snoop-servlet

info:
  name: Snoop Servlet - Information Disclosure
  author: omranisecurity
  severity: low
  description: |
    The Snoop Servlet returns information about the HTTP request itself and sometimes. It could help an attacker to prepare more advanced attacks.
  reference:
    - https://www.acunetix.com/vulnerabilities/\web/snoop-servlet-information-disclosure/
  metadata:
    max-request: 1
    shodan-query: title:"Snoop Servlet"
    fofa-query: title="Snoop Servlet"
  tags: config,exposure,snoop,snoop-servlet,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/snoop"

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains(body, "Snoop Servlet - Request/Client Information")'
        condition: and
# digest: 4b0a00483046022100eee8e22b4cfbd0801765624028e2ee3e4214f5e921c8c595d2924d1e86d08c0e022100e29e50f183e9d0ffadc6947cf2bbe76964a9b3aa5241e5679f0410d6d358bcd1:922c64590222798bb761d5b6d8e72950

来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/exposures/configs/snoop-servlet-exposure.yaml