漏洞描述
Transmission dashboard was detected.
transmission-dashboard: Transmission Dashboard - Detect
PoC代码[已公开]
id: transmission-dashboard
info:
name: Transmission Dashboard - Detect
author: fabaff
severity: medium
description: Transmission dashboard was detected.
reference:
- https://transmissionbt.com/
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss-score: 5.3
cwe-id: CWE-200
cpe: cpe:2.3:a:transmissionbt:transmission:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
shodan-query: http.title:"Transmission Web Interface"
product: transmission
vendor: transmissionbt
tags: misconfig,transmission,exposure,dashboard,discovery
http:
- method: GET
path:
- "{{BaseURL}}/transmission/web/"
host-redirects: true
max-redirects: 2
matchers-condition: or
matchers:
- type: word
part: body
words:
- 'The Transmission Project'
- 'Transmission Web Interface'
condition: and
- type: word
part: server
words:
- 'Transmission'
# digest: 490a00463044022078f097b6473c29fa34070ec46511fdd7e51d7e08508935852d915bc2255c0e0c022076aa07368d426240feddcbcc9076400e0070dce15f3a5e46fa89f3d199ae6f58:922c64590222798bb761d5b6d8e72950