Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Nuclei -validate not flagging invalid ID in template #5247

Closed
princechaddha opened this issue Jun 2, 2024 · 0 comments · Fixed by #5261
Closed

Nuclei -validate not flagging invalid ID in template #5247

princechaddha opened this issue Jun 2, 2024 · 0 comments · Fixed by #5261
Assignees
@RamanaReddy0M
Labels
Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors.
Milestone
nuclei v3.2.9

Comments

@princechaddha
Copy link
Member

The Nuclei -validate flag is not flagging the invalid ID of the template. The following template is being validated without any error:

id: aviatrix detect

info:
  name: Aviatrix Detect
  author: princechaddha
  severity: info
  tags: tech,aviatrix
  description: |
    Detects Aviatrix Controller API misconfigurations
  impact: |
    May lead to unauthorized access or data leakage
  remediation: |
    Review and adjust Aviatrix Controller API configurations to ensure proper access controls

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers-condition: and
    matchers:

      - type: word
        part: body
        words:
          - "<title>Aviatrix Controller</title>"

      - type: status
        status:
          - 200
@princechaddha princechaddha added the Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors. label Jun 2, 2024
@RamanaReddy0M RamanaReddy0M self-assigned this Jun 3, 2024
@RamanaReddy0M RamanaReddy0M linked a pull request Jun 4, 2024 that will close this issue
Fix tempalte-id validation #5261
Merged
4 tasks
@RamanaReddy0M RamanaReddy0M mentioned this issue Jun 4, 2024
Merged
4 tasks
@ehsandeep ehsandeep added this to the nuclei v3.2.9 milestone Jun 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@RamanaReddy0M RamanaReddy0M

Labels
Type: Bug Inconsistencies or issues which will cause an issue or problem for users or implementors.
Projects
None yet
Milestone
nuclei v3.2.9
Development

Successfully merging a pull request may close this issue.

Fix tempalte-id validation projectdiscovery/nuclei
3 participants
@ehsandeep @princechaddha @RamanaReddy0M