unauthenticated-lansweeper: Unauthenticated Lansweeper Instance

日期: 2025-08-01 | 影响软件: unauthenticated lansweeper | POC: 已公开

漏洞描述

Lansweeper Instance is exposed.

PoC代码[已公开]

id: unauthenticated-lansweeper

info:
  name: Unauthenticated Lansweeper Instance
  author: divya_mudgal
  severity: high
  description: Lansweeper Instance is exposed.
  metadata:
    max-request: 1
  tags: lansweeper,unauth,misconfig,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/Default.aspx"

    matchers:
      - type: word
        words:
          - "Main page - Lansweeper"
# digest: 4b0a004830460221008a14feac4d6bb078848a3ef45f034b9512aee5fb9c4d87d134bf2d2c2556004002210091b0f288825788970e532a48b8c41d167c5068e47eb4952f40a94d235e7ccb50:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/misconfiguration/unauthenticated-lansweeper.yaml