|
1 | 1 | Bypass_List: [., '%2f', '%2e'] |
2 | 2 | Load_List: |
3 | | -- {type: Unauthorized, loaded: true, re: codemirror\.addone\.fullscreen\.js, method: GET, name: Nacos, id: 1, state: '200', |
4 | | - url: /nacos/index.html, info: Nacos Find!!!} |
5 | | -- {type: Spring, loaded: true, re: (java\.runtime\.version)|(java\.class\.version)|(sping\.config\.location)|(spring\.application\.name)|(applicationConfig)|(activeProfiles)|(server\.port)|(local\.server\.port), method: GET, name: Spring Env RCE, id: 2, state: '200', url: /env, |
6 | | - info: 'Actuator Env|RCE:spring.cloud.bootstrap.location|XStreamRCE:eureka.client.serviceUrl.defaultZone |
| 3 | +- {type: Unauthorized, loaded: true, re: codemirror\.addone\.fullscreen\.js, method: GET, |
| 4 | + name: Nacos, id: 1, state: '200', url: /nacos/index.html, info: Nacos Find!!!} |
| 5 | +- {type: Spring, loaded: true, re: (java\.runtime\.version)|(java\.class\.version)|(sping\.config\.location)|(spring\.application\.name)|(applicationConfig)|(activeProfiles)|(server\.port)|(local\.server\.port), |
| 6 | + method: GET, name: Spring Env RCE, id: 2, state: '200', url: /env, info: 'Actuator |
| 7 | + Env|RCE:spring.cloud.bootstrap.location|XStreamRCE:eureka.client.serviceUrl.defaultZone |
7 | 8 | Find!!!'} |
8 | | -- {type: Spring, loaded: true, re: (java\.runtime\.version)|(java\.class\.version)|(sping\.config\.location)|(spring\.application\.name)|(applicationConfig)|(activeProfiles)|(server\.port)|(local\.server\.port), method: GET, name: Spring Env RCE, id: 3, state: '200', url: /actuator/env, |
9 | | - info: 'Actuator Env|RCE:spring.cloud.bootstrap.location|XStreamRCE:eureka.client.serviceUrl.defaultZone |
| 9 | +- {type: Spring, loaded: true, re: (java\.runtime\.version)|(java\.class\.version)|(sping\.config\.location)|(spring\.application\.name)|(applicationConfig)|(activeProfiles)|(server\.port)|(local\.server\.port), |
| 10 | + method: GET, name: Spring Env RCE, id: 3, state: '200', url: /actuator/env, info: 'Actuator |
| 11 | + Env|RCE:spring.cloud.bootstrap.location|XStreamRCE:eureka.client.serviceUrl.defaultZone |
10 | 12 | Find!!!'} |
11 | 13 | - {method: GET, state: '200', name: Druid Monitor, url: /druid/index.html, id: 4, |
12 | 14 | info: Druid Monitor Find!!!, loaded: true, type: Unauthorized, re: (src=\"\/druid\.js\")|(href\=\"\/druid\.css\")} |
13 | 15 | - {type: ApiDoc, loaded: true, re: '(Swagger 2\.0)|(\"swagger\"\:)|(Swagger UI)|(\<title\>Swagger |
14 | | - UI)|(swaggerVersion)|(id\=\"swagger\-ui)', method: GET, name: api-docs, id: 5, state: '200', |
15 | | - url: /v2/api-docs, info: api-docs Find!!!} |
| 16 | + UI)|(swaggerVersion)|(id\=\"swagger\-ui)', method: GET, name: api-docs, id: 5, |
| 17 | + state: '200', url: /v2/api-docs, info: api-docs Find!!!} |
16 | 18 | - {type: ApiDoc, loaded: true, re: '(Swagger 2\.0)|(\"swagger\"\:)|(Swagger UI)|(\<title\>Swagger |
17 | 19 | UI)|(swaggerVersion)|(id\=\"swagger\-ui)', method: GET, name: Swagger-UI, id: 6, |
18 | 20 | state: '200', url: /swagger-ui.html, info: Swagger-UI Find!!!} |
19 | | -- {type: Spring, loaded: true, re: 'springframework|reloadByURL|createJNDIRealm|(\"type\"\:\"list\")', method: GET, |
20 | | - name: Spring Jolokia|Rce, id: 7, state: '200', url: /jolokia/list, info: 'Spring |
21 | | - Jolokia|XXE/RCE:reloadByURL|RCE:createJNDIRealm Find!!!'} |
22 | | -- {type: Spring, loaded: true, re: 'springframework|reloadByURL|createJNDIRealm|(\"type\"\:\"list\")', method: GET, |
23 | | - name: Spring Jolokia|Rce, id: 8, state: '200', url: /actuator/jolokia/list, info: 'Spring |
24 | | - Jolokia|XXE/RCE:reloadByURL|RCE:createJNDIRealm Find!!!'} |
| 21 | +- {type: Spring, loaded: true, re: 'springframework|reloadByURL|createJNDIRealm|(\"type\"\:\"list\")', |
| 22 | + method: GET, name: Spring Jolokia|Rce, id: 7, state: '200', url: /jolokia/list, |
| 23 | + info: 'Spring Jolokia|XXE/RCE:reloadByURL|RCE:createJNDIRealm Find!!!'} |
| 24 | +- {type: Spring, loaded: true, re: 'springframework|reloadByURL|createJNDIRealm|(\"type\"\:\"list\")', |
| 25 | + method: GET, name: Spring Jolokia|Rce, id: 8, state: '200', url: /actuator/jolokia/list, |
| 26 | + info: 'Spring Jolokia|XXE/RCE:reloadByURL|RCE:createJNDIRealm Find!!!'} |
25 | 27 | - {type: ApiDoc, loaded: true, re: api, method: GET, name: Doc File, id: 9, state: '200', |
26 | 28 | url: /doc.html, info: Doc File Find!!!} |
27 | | -- {type: Spring, loaded: true, re: swagger, method: GET, name: swagger.json, id: 10, |
| 29 | +- {type: ApiDoc, loaded: true, re: swagger, method: GET, name: swagger.json, id: 10, |
28 | 30 | state: '200', url: /v1/swagger.json, info: swagger.json Find!!!} |
29 | | -- {type: Spring, loaded: true, re: swagger, method: GET, name: swagger.json, id: 11, |
| 31 | +- {type: ApiDoc, loaded: true, re: swagger, method: GET, name: swagger.json, id: 11, |
30 | 32 | state: '200', url: /v2/swagger.json, info: swagger.json Find!!!} |
31 | | -- {type: Spring, loaded: true, re: swagger, method: GET, name: Swagger-resources, |
| 33 | +- {type: ApiDoc, loaded: true, re: swagger, method: GET, name: Swagger-resources, |
32 | 34 | id: 12, state: '200', url: /swagger-resources, info: swagger-resources Find!!!} |
33 | 35 | - {type: ApiDoc, loaded: true, re: ASP.NET|tempuri.org, method: GET, name: Soap, id: 13, |
34 | 36 | state: '200', url: /services, info: Soap Find!!!} |
@@ -56,8 +58,8 @@ Load_List: |
56 | 58 | id: 24, state: '200', url: /v3/api-docs, info: api-docs Find !!!} |
57 | 59 | - {type: Information leakage, loaded: true, re: User-agent, method: GET, name: robots, |
58 | 60 | id: 25, state: '200', url: /robots.txt, info: robots.txt Find !!!} |
59 | | -- {type: Spring, loaded: true, re: href, method: GET, name: actuator, state: '200', |
60 | | - url: /actuator/, info: actuator FInd !!!, id: 28} |
| 61 | +- {loaded: true, re: '\{\"\_links\"\:\{\"self\"\:\{', method: GET, name: actuator, |
| 62 | + id: 28, state: '200', type: Spring, url: /actuator/, info: actuator FInd !!!} |
61 | 63 | - {loaded: true, re: swagger, method: GET, name: Swagger-UI, id: 29, state: '200', |
62 | 64 | type: ApiDoc, url: /api/swagger-ui.html, info: Swagger Find!!!} |
63 | 65 | - {loaded: true, re: Platform|Components, method: GET, name: Docker Unauthorized, |
@@ -88,5 +90,6 @@ Load_List: |
88 | 90 | url: '/zabbix.php?action=problem.view&ddreset=1', info: Zabbix Find!!!} |
89 | 91 | - {loaded: true, re: Dashboard|solr|Request-Handler, method: GET, name: Solr, id: 42, |
90 | 92 | state: '200', type: Unauthorized, url: /solr/admin, info: Solr Find!!!} |
91 | | -- {loaded: true, re: Weblogic, method: GET, name: Weblogic Console, id: 43, state: '200', |
92 | | - type: Weblogic, url: /console, info: Weblogic Console Find!!!} |
| 93 | +- {loaded: true, re: (Welcome to Weblogic Application Server)|(Oracle WebLogic Server)|(\/console\/framework\/skins\/wlsconsole\/images\/login_WebLogic_branding\.png), |
| 94 | + method: GET, name: Weblogic Console, id: 43, state: '200', type: Weblogic, url: /console, |
| 95 | + info: Weblogic Console Find!!!} |
0 commit comments