Merge pull request #14834 from projectdiscovery/cacti-fpd

Create Cacti - Full Path Disclosure

http/misconfiguration/cacti-fpd.yaml

@@ -0,0 +1,43 @@
+id: cacti-fpd
+
+info:
+  name: Cacti - Full Path Disclosure
+  author: theamanrawat
+  severity: low
+  description: |
+    Detected a Full Path Disclosure (FPD) in Cacti when the log file is not writable. The error message reveals the absolute path of the log file on the server.
+  tags: cacti,fpd,exposure,path,misconfig
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}"
+      - "{{BaseURL}}/cacti/"
+      - "{{BaseURL}}/index.php"
+      - "{{BaseURL}}/cacti/index.php"
+
+    stop-at-first-match: true
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "System log file is not available for writing"
+          - "please enable write access"
+        condition: and
+
+      - type: regex
+        part: body
+        regex:
+          - 'Log:\s+([a-zA-Z0-9/\\_.-]+cacti\.log)'
+
+      - type: status
+        status:
+          - 200
+
+    extractors:
+      - type: regex
+        part: body
+        group: 1
+        regex:
+          - 'Log:\s+([a-zA-Z0-9/\\_.-]+cacti\.log)'