From 62fb7f8a7cdb2d05c9039fea3165304a2dfcb9aa Mon Sep 17 00:00:00 2001 From: harris2015 Date: Wed, 7 Jul 2021 11:44:36 +0800 Subject: [PATCH] Update docker-api-unauthorized-rce.yml (#1342) --- pocs/docker-api-unauthorized-rce.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pocs/docker-api-unauthorized-rce.yml b/pocs/docker-api-unauthorized-rce.yml index 2ddd55ae3..44644e5a4 100644 --- a/pocs/docker-api-unauthorized-rce.yml +++ b/pocs/docker-api-unauthorized-rce.yml @@ -4,7 +4,7 @@ rules: path: /info follow_redirects: false expression: | - response.status == 200 && response.body.bcontains(b"KernelVersion") && response.body.bcontains(b"RegistryConfig") && response.body.bcontains(b"DockerRootDir") + response.status == 200 && response.content_type.contains("json") && response.body.bcontains(b"KernelVersion") && response.body.bcontains(b"RegistryConfig") && response.body.bcontains(b"DockerRootDir") detail: author: j4ckzh0u(https://github.com/j4ckzh0u)