Merge pull request sullo#468 from opt9/gitignore

Add ctags file
solyuan · Apr 7, 2017 · 4cee625 · 4cee625
2 parents fa0ea3f + 7ceca57
commit 4cee625
Show file tree

Hide file tree

Showing 3 changed files with 46 additions and 1 deletion.
diff --git a/.gitignore b/.gitignore
@@ -3,3 +3,4 @@
 /*.bbprojectd/
 *.sublime-project
 *.sublime-workspace
+tags
diff --git a/program/databases/db_tests b/program/databases/db_tests
@@ -6848,4 +6848,3 @@
 "007157","0","e","/WebLM/","GET","Web License Manager (WebLM)","","Avaya","","","Avaya license managing console found. Default credential is admin:weblmadmin","",""
 "007158","0","e","/g450.html","GET","Avaya G450/G350 - Avaya Device Management","","routerIp","","","Avaya web console found. Default SNMP community string is public","",""
 "007159","0","e","/local-login/","GET","Unified Communications Management","","Avaya","","","Avaya System Manager web console found. Default credential is admin:admin","",""
-"007160","0","7","/../../../../../../../../../../../../etc/shadow","GET","root:\$1\$.*","","","","","Miele Professional PG 8528 directory traversal. See http://seclists.org/fulldisclosure/2017/Mar/63","",""
diff --git a/program/plugins/nikto_dishwasher.plugin b/program/plugins/nikto_dishwasher.plugin
@@ -0,0 +1,45 @@
+#VERSION,2.20
+###############################################################################
+#  Copyright (C) 2017 Chris Sullo
+#
+#  This program is free software; you can redistribute it and/or
+#  modify it under the terms of the GNU General Public License
+#  as published by the Free Software Foundation; version 2
+#  of the License only.
+#
+#  This program is distributed in the hope that it will be useful,
+#  but WITHOUT ANY WARRANTY; without even the implied warranty of
+#  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+#  GNU General Public License for more details.
+#
+#  You should have received a copy of the GNU General Public License
+#  along with this program; if not, write to
+#  Free Software Foundation, 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+###############################################################################
+# PURPOSE:
+# Check for the Miele Professional PG 8528 directory traversal vulnerability
+###############################################################################
+sub nikto_dishwasher_init {
+    my $id = { name        => "dishwasher",
+               full_name   => "dishwasher",
+               author      => "Jeremy Bae",
+               description => "Look for the dishwasher directory traversal vulnerability.",
+               hooks       => { scan => { method => \&nikto_dishwasher, weight => 20 }, },
+               copyright   => "2017 Chris Sullo",
+             };
+
+    return $id;
+}
+
+sub nikto_dishwasher {
+    my ($mark, $parameters) = @_;
+    my $path = "/../../../../../../../../../../../../etc/shadow";
+
+    my ($res, $content, $error, $request, $response) = nfetch($mark, $path, "GET", "", "", "", "dishwasher");
+
+    if (($response->{'server'} =~ 'PST10 WebServer') && ($content =~ 'root:\$1\$.*')) {
+        add_vulnerability($mark, "$path: Site appears vulnerable to the dishwasher directory traversal vulnerability.", 999951, 0, "GET", $path, $request, $response);
+    }
+}
+
+1;