mirror of
https://github.com/projectdiscovery/nuclei-templates.git
synced 2026-02-06 18:53:16 +08:00
27 lines
1.0 KiB
YAML
27 lines
1.0 KiB
YAML
id: wp-google-analytics-fpd
|
|
|
|
info:
|
|
name: WordPress Google Analytics - Full Path Disclosure
|
|
author: 0x_Akoko
|
|
severity: info
|
|
description: |
|
|
Detected WordPress Google Analytics Dashboard Plugin for WordPress by MonsterInsights, potentially revealing analytics data, file paths, and errors.
|
|
reference:
|
|
- https://wordpress.org/plugins/google-analytics-for-wordpress/
|
|
metadata:
|
|
verified: true
|
|
max-request: 1
|
|
tags: debug,wordpress,fpd,wp-google-analytics,wp-plugin
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}/wp-content/plugins/google-analytics-for-wordpress/lite/includes/admin/connect.php"
|
|
|
|
matchers:
|
|
- type: dsl
|
|
dsl:
|
|
- 'status_code == 200'
|
|
- 'contains_all(body, "Fatal error", "Uncaught Error", "/google-analytics-for-wordpress/")'
|
|
condition: and
|
|
# digest: 4b0a00483046022100ef6e73f39efae1e19a9cbe6e0737f25d1cbfa815bb2128e18bdf8f2265c0dd8f022100c92c26873702d22431ddfc3ad7b7d883b0612232bad67881c0601d10c0e6f62b:922c64590222798bb761d5b6d8e72950 |