http/technologies/fastjson-version.yaml

id: fastjson-version

info:
  name: Fastjson Version Detection
  author: yuansec
  severity: info
  description: If the server returns an exception to the client,The fastjson version will be retrieved,Fastjson versions greater than 1.2.41,Contains the latest version(1.2.76).
  reference:
    - https://blog.csdn.net/caiqiiqi/article/details/107907489
  metadata:
    max-request: 1
  tags: fastjson,tech

http:
  - raw:
      - |
        POST / HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/json

        {"@type":"java.lang.AutoCloseable"

    matchers:
      - type: word
        words:
          - 'fastjson-version'

    extractors:
      - type: regex
        part: body
        group: 1
        regex:
          - 'fastjson-version.*([0-9]\.[0-9]+\.[0-9]+)'
# digest: 490a0046304402204df02b64c801bbc5fc6857e7a37f0a56dc08cad7d6678678c8eb154404b9299d02203b24c0926be03b7f78e951d1669159321cb42bc8526839a5daafa46026d99007:922c64590222798bb761d5b6d8e72950
lint fix 2021-11-05 03:07:43 +05:30			`id: fastjson-version`
Create fastjson-version-detection.yaml 2021-11-04 20:36:06 +08:00
			`info:`
Create fastjson-version-detection.yaml 2021-11-04 20:46:29 +08:00			`name: Fastjson Version Detection`
			`author: yuansec`
			`severity: info`
			`description: If the server returns an exception to the client,The fastjson version will be retrieved,Fastjson versions greater than 1.2.41,Contains the latest version(1.2.76).`
refactor: Description field uniformization * info field reorder * reference values refactored to list * added new lines after the id and before the protocols * removed extra new lines * split really long descriptions to multiple lines (part 1) * other minor fixes 2022-04-22 13:38:41 +03:00			`reference:`
			`- https://blog.csdn.net/caiqiiqi/article/details/107907489`
Added max request counter of each template 2023-04-28 13:41:21 +05:30			`metadata:`
			`max-request: 1`
templateman update 2023-10-14 16:57:55 +05:30			`tags: fastjson,tech`
Create fastjson-version-detection.yaml 2021-11-04 20:36:06 +08:00
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-04-27 09:58:59 +05:30			`http:`
Create fastjson-version-detection.yaml 2021-11-04 20:36:06 +08:00			`- raw:`
			`- \|`
			`POST / HTTP/1.1`
			`Host: {{Hostname}}`
			`Content-Type: application/json`

Create fastjson-version-detection.yaml 2021-11-04 20:46:29 +08:00			`{"@type":"java.lang.AutoCloseable"`
Create fastjson-version-detection.yaml 2021-11-04 20:36:06 +08:00
lint fix 2021-11-05 15:24:58 +05:30			`matchers:`
			`- type: word`
			`words:`
			`- 'fastjson-version'`

			`extractors:`
update fastjson-version extractors 2021-11-05 14:40:25 +08:00			`- type: regex`
lint fix 2021-11-05 03:07:43 +05:30			`part: body`
lint fix 2021-11-05 15:24:58 +05:30			`group: 1`
			`regex:`
templateman update 2023-10-14 16:57:55 +05:30			`- 'fastjson-version.*([0-9]\.[0-9]+\.[0-9]+)'`
chore: sign templates 🤖 2024-12-01 13:57:55 +00:00			`# digest: 490a0046304402204df02b64c801bbc5fc6857e7a37f0a56dc08cad7d6678678c8eb154404b9299d02203b24c0926be03b7f78e951d1669159321cb42bc8526839a5daafa46026d99007:922c64590222798bb761d5b6d8e72950`