http/misconfiguration/installer/codeigniter-installer.yaml

id: codeigniter-installer

info:
  name: Codeigniter Application Installer Exposure
  author: ritikchaddha
  severity: high
  description: Codeigniter Application is susceptible to the Installation page exposure due to misconfiguration.
  classification:
    cpe: cpe:2.3:a:codeigniter:codeigniter:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: codeigniter
    product: codeigniter
    shodan-query: http.title:"Codeigniter Application Installer"
  tags: misconfig,codeigniter,install,exposure

http:
  - method: GET
    path:
      - '{{BaseURL}}/install/'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - 'Codeigniter Application Installer'

      - type: status
        status:
          - 200
# digest: 4b0a00483046022100808cca147999846440f46b68a4f8efc47d35dd7ac88b831c485aa4fca44acba9022100c9e30d3f7b9d4e3f3fa92ed0cfc7ffcd0853fa72db7c3538ce1b0ef41a3d8438:922c64590222798bb761d5b6d8e72950
Create codeigniter-installer.yaml 2022-10-27 02:14:09 +05:30			`id: codeigniter-installer`

			`info:`
Update codeigniter-installer.yaml 2022-10-28 10:48:29 +05:30			`name: Codeigniter Application Installer Exposure`
Create codeigniter-installer.yaml 2022-10-27 02:14:09 +05:30			`author: ritikchaddha`
Update codeigniter-installer.yaml 2025-02-13 15:34:27 +07:00			`severity: high`
Descriptions Updated 2023-12-21 14:49:34 +05:30			`description: Codeigniter Application is susceptible to the Installation page exposure due to misconfiguration.`
Fix classification Fix classification 2024-09-10 14:38:16 +05:30			`classification:`
			`cpe: cpe:2.3:a:codeigniter:codeigniter::::::::`
Create codeigniter-installer.yaml 2022-10-27 02:14:09 +05:30			`metadata:`
			`verified: true`
templateman update 2023-10-14 16:57:55 +05:30			`max-request: 1`
Add missing cpes Added missing cpes 2024-09-10 13:52:50 +05:30			`vendor: codeigniter`
Fix classification Fix classification 2024-09-10 14:38:16 +05:30			`product: codeigniter`
Revert "chore: update TemplateMan 🤖" This reverts commit c31d574176f2b9e6f8d4fe573a24e7192f808e84. 2025-05-27 10:39:47 +08:00			`shodan-query: http.title:"Codeigniter Application Installer"`
Update codeigniter-installer.yaml 2022-10-28 10:48:29 +05:30			`tags: misconfig,codeigniter,install,exposure`
Create codeigniter-installer.yaml 2022-10-27 02:14:09 +05:30
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-04-27 09:58:59 +05:30			`http:`
Create codeigniter-installer.yaml 2022-10-27 02:14:09 +05:30			`- method: GET`
			`path:`
			`- '{{BaseURL}}/install/'`

			`matchers-condition: and`
			`matchers:`
			`- type: word`
			`part: body`
			`words:`
			`- 'Codeigniter Application Installer'`

			`- type: status`
			`status:`
			`- 200`
chore: sign templates 🤖 2025-02-19 05:23:28 +00:00			`# digest: 4b0a00483046022100808cca147999846440f46b68a4f8efc47d35dd7ac88b831c485aa4fca44acba9022100c9e30d3f7b9d4e3f3fa92ed0cfc7ffcd0853fa72db7c3538ce1b0ef41a3d8438:922c64590222798bb761d5b6d8e72950`