search

projectdiscovery / nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.
https://github.com/projectdiscovery/nuclei
MIT License
9.08k stars 2.6k forks source link

"Subdomain takeover finder" template results in false positives for ActiveCampaign instances. #128

Closed EdOverflow closed 4 years ago

EdOverflow commented 4 years ago

The Subdomain takeover finder template's matcher looks for lighttpd parking pages which is an independent piece of software not necessarily running on ActiveCampaign.

https://github.com/projectdiscovery/nuclei-templates/blob/8b2bc8ab8ef801d4342bb4ec4fedb5460296da29/subdomain-takeover/detect-all-takeovers.yaml#L242-L245

image

Example lighttpd instance not running on ActiveCampaign.

Also, just for your interest, there is a typo in the name. ```diff - name: activecompaign + name: activecampaign ```
ehsandeep commented 4 years ago

Thanks for creating an issue for this @EdOverflow , I will try to update with strict fingerprint or drop the detection to avoid false positive.

ehsandeep commented 4 years ago

Removed "ActiveCampaign" due to lack of POC https://github.com/projectdiscovery/nuclei-templates/commit/db896dfb75dc7eaad037ed0962012ccf8715c706