unauth-mautic-upgrade: Unauthenticated Mautic Upgrade.php Exposure

日期: 2025-08-01 | 影响软件: Mautic | POC: 已公开

漏洞描述

Upgrade.php page in Mautic is exposed.

PoC代码[已公开]

id: unauth-mautic-upgrade

info:
  name: Unauthenticated Mautic Upgrade.php Exposure
  author: huowuzhao
  severity: high
  description: Upgrade.php page in Mautic is exposed.
  metadata:
    verified: true
    max-request: 1
    shodan-query: title:"Mautic"
  tags: misconfig,unauth,mautic

http:
  - method: GET
    path:
      - '{{BaseURL}}/upgrade.php'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - 'Upgrade Mautic'
          - 'Click here to start upgrade'
        condition: and

      - type: word
        part: header
        words:
          - 'text/html'

      - type: status
        status:
          - 200
# digest: 490a004630440220395d4d9099c0b14ad7d129f6d86b88bfefdc9395094624b6b00081f206eacf0002207daacfe8ec4a32ba3d280e850c90530d1ad9cec6c63404e94ef1b968b1ac7dd8:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/./http/misconfiguration/unauth-mautic-upgrade.yaml

相关漏洞推荐