Grav Register Admin User - Detect

ID: grav-register-admin

Severity: high

Author: DhiyaneshDk

Tags: grav,register,admin,misconfig

Description

Exposed Grav admin user register page.

YAML Source

id: grav-register-admin

info:
  name: Grav Register Admin User - Detect
  author: DhiyaneshDk
  severity: high
  description: Exposed Grav admin user register page.
  classification:
    cpe: cpe:2.3:a:getgrav:grav_admin:*:*:*:*:grav:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: getgrav
    product: grav_admin
    shodan-query: title:"Grav Register Admin User"
  tags: grav,register,admin,misconfig

http:
  - method: GET
    path:
      - "{{BaseURL}}/admin"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - 'Grav Register Admin User | Grav'
          - 'admin accounts'
        condition: and

      - type: status
        status:
          - 200
# digest: 490a00463044022072c8d0c1866b81959d2ebb18a564ce9a10fff0c8ef22c4dcc957e6117e7c7482022073982442661059477b12af61a76c685493d951c916302ebf18e091031c68b182:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

$ nuclei -u "URL" -t "http/misconfiguration/grav-register-admin.yaml"

View on Github