Merge pull request #15052 from projectdiscovery/Akokonunes-patch-5

Create rails-admin-dashboard-exposure.yaml

http/exposed-panels/rails-admin-dashboard-exposure.yaml

@@ -0,0 +1,32 @@
+id: rails-admin-dashboard-exposure
+
+info:
+  name: RailsAdmin Dashboard Exposure
+  author: 0x_Akoko
+  severity: high
+  description: |
+    Detected RailsAdmin dashboard was exposed without proper authentication, allowing unauthorized access to data management interface.
+  reference:
+    - https://github.com/railsadminteam/rails_admin
+  metadata:
+    max-request: 2
+    verified: true
+    shodan-query: http.html:"RailsAdmin"
+    fofa-query: body="RailsAdmin"
+  tags: rails,admin,exposure,misconfig,panel
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}/admin"
+      - "{{BaseURL}}/rails_admin"
+
+    stop-at-first-match: true
+
+    matchers:
+      - type: dsl
+        dsl:
+          - 'status_code == 200'
+          - 'contains_all(body, "Settings</a>", "rails_admin_sidebar", "rails_admin_content")'
+          - '!contains_any(body, "Sign in", "Log in", "login_form", "devise")'
+        condition: and