The remote host is running the Webalizer Report generator. Webalizer parses web logs and gives a potential attacker information regarding hosts that have accessed the server, resources accessed, total statistics for the Web server, version of Web server, and more.
PoC代码[已公开]
id: webalizer-statistics
info:
name: Webalizer Statistics Information Disclosure
author: 0x_Akoko
severity: low
description: |
The remote host is running the Webalizer Report generator. Webalizer parses web logs and gives a potential attacker information regarding hosts that have accessed the server, resources accessed, total statistics for the Web server, version of Web server, and more.
remediation: Use ACLs to protect the Webalizer report.
reference:
- https://www.rapid7.com/db/vulnerabilities/spider-webalizer-stats-disclosure
- https://www.tenable.com/plugins/nnm/2506
metadata:
verified: true
max-request: 2
shodan-query: html:"Generated by The Webalizer"
tags: webalizer,logs,statistics,tenable,misconfig,vuln
http:
- method: GET
path:
- '{{BaseURL}}'
- '{{BaseURL}}/stats/index.html'
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- 'Generated by The Webalizer'
- 'Usage Statistics'
condition: and
- type: status
status:
- 200
# digest: 490a0046304402202ddf8f81f75255b43c8791ffe89161e82058d8ab069ca4d0caec0fb2deca4c9b022025db177075862cbb20356103070fe4ac47ec31d61bdb74f48c88feb7ee018dae:922c64590222798bb761d5b6d8e72950