search

projectdiscovery / nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.
https://github.com/projectdiscovery/nuclei
MIT License
8.96k stars 2.56k forks source link

Too many false positive on beanstalk-service.yaml #10310

Closed theMiddleBlue closed 1 month ago

theMiddleBlue commented 1 month ago

The following template seems to lead to many false positive on POP3 and IMAP services. It basically matches every "OK" in response.

Moreover, am I wrong or it doesn't follow the "Using multiple matchers" policy?

https://github.com/projectdiscovery/nuclei-templates/blob/51194f2d14fb1fedbd139050084ee1536b3ae6c2/network/enumeration/beanstalk-service.yaml#L25-L29

Thank you!

pussycat0x commented 1 month ago

Hi @theMiddleBlue , Thank you for bringing this issue to our attention. It has now been resolved.