mirror of
https://github.com/projectdiscovery/nuclei-templates.git
synced 2026-01-31 15:53:33 +08:00
28 lines
688 B
YAML
28 lines
688 B
YAML
id: clientaccesspolicy
|
|
|
|
info:
|
|
name: Silverlight cross-domain policy
|
|
author: emadshanab
|
|
severity: info
|
|
metadata:
|
|
max-request: 1
|
|
tags: miscellaneous,misc,vuln
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}/clientaccesspolicy.xml"
|
|
|
|
matchers-condition: and
|
|
matchers:
|
|
- type: word
|
|
words:
|
|
- "<access-policy>"
|
|
- "<cross-domain-access>"
|
|
- "domain uri="
|
|
condition: and
|
|
|
|
- type: status
|
|
status:
|
|
- 200
|
|
# digest: 4a0a0047304502210083a9a4251b8e7591d4a4c4392bec7beab036c981821244221feaefac6fedeea402207ebf48ea2c6d4d956639a1e4e5ca7dd9d5c9b00066480655d0a2516345695d4e:922c64590222798bb761d5b6d8e72950 |