drupal_module-safedelete-access-bypass.yaml

id: drupal_module-safedelete-access-bypass
info:
  name: drupal_module-safedelete-access-bypass
  author: Bishopfox
  severity: medium
  description: "This module aims to prevent broken content references by informing content editors either on delete or archive moderation.  The module provides an orphaned content report for broken references, which may reveal titles of unpublished content."
  reference:
    - https://www.drupal.org/sa-contrib-2023-039
  metadata:
    security-risk: "Moderately critical 13∕25 AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:All"
    vulnerability: "access-bypass"
    fofa-query: "/sites/all/modules/safedelete/"
    google-query: "inurl:'/sites/all/modules/safedelete/"
    impact: medium
    type: indicator
    created_at: '0001-01-01T00:00:00Z'
  tags: drupal

http:
  - method: GET
    redirects: true
    max-redirects: 3
    path:
      - "{{BaseURL}}/sites/all/modules/safedelete/safedelete.info"

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - 'version = "([0-9]+\.x-[0-9]+\.[0-9]+)"'
      - type: status
        status:
          - 200
      - type: word
        words:
          - 'safedelete'
        part: body

    extractors:
      - type: regex
        name: version
        part: body
        group: 1
        regex:
          - 'version = "([0-9]+\.x-[0-9]+\.[0-9]+)"'

      - type: dsl
        dsl:
         - compare_versions(version, '1.0.43')
         - compare_versions(version, '1.0.42')
         - compare_versions(version, '1.0.41')
         - compare_versions(version, '1.0.40')
         - compare_versions(version, '1.0.39')
         - compare_versions(version, '1.0.38')
         - compare_versions(version, '1.0.36')
         - compare_versions(version, '1.0.35')
         - compare_versions(version, '1.0.34')
         - compare_versions(version, '1.0.33')
         - compare_versions(version, '1.0.32')
         - compare_versions(version, '1.0.31')
         - compare_versions(version, '1.0.30')
         - compare_versions(version, '1.0.29')
         - compare_versions(version, '1.0.28')
         - compare_versions(version, '1.0.27')
         - compare_versions(version, '1.0.26')
         - compare_versions(version, '1.0.25')
         - compare_versions(version, '1.0.24')
         - compare_versions(version, '1.0.23')
         - compare_versions(version, '1.0.22')
         - compare_versions(version, '1.0.21')
         - compare_versions(version, '1.0.20')
         - compare_versions(version, '1.0.19')
         - compare_versions(version, '1.0.18')
         - compare_versions(version, '1.0.17')
         - compare_versions(version, '1.0.16')
         - compare_versions(version, '1.0.15')
         - compare_versions(version, '1.0.14')
         - compare_versions(version, '1.0.13')
         - compare_versions(version, '1.0.12')
         - compare_versions(version, '1.0.11')
         - compare_versions(version, '1.0.10')
         - compare_versions(version, '1.0.9')
         - compare_versions(version, '1.0.8')
         - compare_versions(version, '1.0.7')
         - compare_versions(version, '1.0.5')
         - compare_versions(version, '1.0.4')
         - compare_versions(version, '1.0.3')
         - compare_versions(version, '1.0.2')
         - compare_versions(version, '1.0.1')
         - compare_versions(version, '1.0.0')