symfony-profiler: Symfony Profiler - Detect

日期: 2025-08-01 | 影响软件: symfony profiler | POC: 已公开

漏洞描述

Symfony profiler was detected.

PoC代码[已公开]

id: symfony-profiler

info:
  name: Symfony Profiler - Detect
  author: pdteam
  severity: high
  description: Symfony profiler was detected.
  reference:
    - https://symfony.com/doc/current/profiler.html
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cwe-id: CWE-200
    cpe: cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 2
    shodan-query: http.html:"symfony Profiler"
    product: symfony
    vendor: sensiolabs
  tags: config,exposure,symfony,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/app_dev.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/index.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/index_dev.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/dev.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/debug.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/_debug/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/web/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/public/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/frontend_dev.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/backend_dev.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/api_dev.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/app.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/app_test.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/test.php/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/symfony/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/debug/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/dev/_profiler/empty/search/results?limit=10"
      - "{{BaseURL}}/profiler/empty/search/results?limit=10"

    stop-at-first-match: true
    matchers:
      - type: word
        part: body
        words:
          - "Symfony Profiler"
          - "<title>Profiler</title>"
          - "Symfony-Debug-Toolbar"
# digest: 4a0a0047304502201c7d3ddc97ea3783e7657486adcc8a622cfc19cd57c0f1b5f98e88b28d473d21022100e0773cfaf928db4faf222ca70d68102a7a8dee94b203a58efe096a7ba19ff2d2:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/exposures/configs/symfony-profiler.yaml

相关漏洞推荐