Fix up incorrect user who we are executing as

h00die · May 2, 2023 · 092e4f9 · 092e4f9
1 parent cf6b309
commit 092e4f9
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/...odules/auxiliary/scanner/http/icinga_static_library_file_directory_traversal.md b/...odules/auxiliary/scanner/http/icinga_static_library_file_directory_traversal.md
@@ -6,7 +6,7 @@ unauthenticated directory traversal vulnerability. The vulnerability is triggere
 through the icinga-php-thirdparty library, which allows unauthenticated users 
 to retrieve arbitrary files from the targets filesystem via a GET request to
 `/lib/icinga/icinga-php-thirdparty/<absolute path to target file on disk>` as the user
-running the Icingaweb server, which will typically be the `incinga` user.
+running the Icingaweb server, which will typically be the `www-data` user.
 
 This can then be used to retrieve sensitive configuration information from the target
 such as the configuration of various services, which may reveal sensitive login or configuration information,

diff --git a/modules/auxiliary/scanner/http/icinga_static_library_file_directory_traversal.rb b/modules/auxiliary/scanner/http/icinga_static_library_file_directory_traversal.rb
@@ -19,7 +19,7 @@ def initialize(info = {})
           through the icinga-php-thirdparty library, which allows unauthenticated users
           to retrieve arbitrary files from the targets filesystem via a GET request to
           /lib/icinga/icinga-php-thirdparty/<absolute path to target file on disk> as the user
-          running the Icingaweb server, which will typically be the incinga user.
+          running the Icingaweb server, which will typically be the www-data user.
 
           This can then be used to retrieve sensitive configuration information from the target
           such as the configuration of various services, which may reveal sensitive login