-
Notifications
You must be signed in to change notification settings - Fork 2.4k
/
phpinfo-files.yaml
69 lines (63 loc) · 1.78 KB
/
phpinfo-files.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
id: phpinfo-files
info:
name: PHPinfo Page - Detect
author: pdteam,daffainfo,meme-lord,dhiyaneshDK,wabafet,mastercho
severity: low
description: |
PHPinfo page was detected. The output of the phpinfo() command can reveal sensitive and detailed PHP environment information.
remediation: Remove PHP Info pages from publicly accessible sites, or restrict access to authorized users only.
classification:
cwe-id: CWE-200
metadata:
max-request: 25
tags: config,exposure,phpinfo
http:
- method: GET
path:
- "{{BaseURL}}{{paths}}"
payloads:
paths:
- "/php.php"
- "/php2.php"
- "/phpinfo.php"
- "/info.php"
- "/infophp.php"
- "/php_info.php"
- "/test.php"
- "/i.php"
- "/p.php"
- "/pi.php"
- "/asdf.php"
- "/pinfo.php"
- "/phpversion.php"
- "/time.php"
- "/index.php"
- "/temp.php"
- "/old_phpinfo.php"
- "/infos.php"
- "/linusadmin-phpinfo.php"
- "/php-info.php"
- "/dashboard/phpinfo.php"
- "/_profiler/phpinfo.php"
- "/_profiler/phpinfo"
- "/?phpinfo=1"
- "/l.php?act=phpinfo"
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- "PHP Extension"
- "PHP Version"
condition: and
- type: status
status:
- 200
extractors:
- type: regex
part: body
group: 1
regex:
- '>PHP Version <\/td><td class="v">([0-9.]+)'
# digest: 4a0a0047304502210099232841cdc5c231ae3d676d8a93bdf005460495483757f8fc3716bc033b481a02202dacf40e940a66680b41af4802eb37a6e470d949904241b26612ba281013e422:922c64590222798bb761d5b6d8e72950