LibreNMS Installation Page - Exposure
ID: librenms-installer
Severity: high
Author: DhiyaneshDK
Tags: misconfig,install,exposure,librenms
Description
Section titled “Description”Detects exposed LibreNMS installation page.
YAML Source
Section titled “YAML Source”id: librenms-installer
info: name: LibreNMS Installation Page - Exposure author: DhiyaneshDK severity: high description: | Detects exposed LibreNMS installation page. reference: - https://docs.librenms.org/Installation/Install-LibreNMS/ classification: cpe: cpe:2.3:a:librenms:librenms:*:*:*:*:*:*:*:* metadata: verified: true max-request: 1 vendor: librenms product: librenms shodan-query: html:"LibreNMS Install" tags: misconfig,install,exposure,librenms
http: - method: GET path: - "{{BaseURL}}/install/checks"
matchers-condition: and matchers: - type: word part: body words: - "LibreNMS Install"
- type: status status: - 200# digest: 4a0a00473045022100fd0789080e4dbee89742a06a94ef7487bdbd613618046d7c37618e6f72f5a06002205d6eb004077c38495c1ec583d5848bd575d2b360aa06ec3aee4cbd4f92bed5bb:922c64590222798bb761d5b6d8e72950Guide to check the vulnerabilities
Section titled “Guide to check the vulnerabilities”This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.
$ nuclei -u "URL" -t "http/misconfiguration/installer/librenms-installer.yaml"