Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Couchbase Buckets Unauthenticated REST API - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#exposure#couchbase
Description

What is the "Couchbase Buckets Unauthenticated REST API - Detect?" module?

The "Couchbase Buckets Unauthenticated REST API - Detect" module is designed to detect misconfigurations in the Couchbase Buckets REST API. It targets the Couchbase software and aims to identify instances where the API is accessible without authentication. The severity of this module is classified as informative.

This module was authored by geeknik.

Impact

If the Couchbase Buckets REST API is accessible without authentication, it poses a security risk. Unauthorized users may be able to access sensitive data stored in the buckets, potentially leading to data breaches or unauthorized modifications.

How does the module work?

The module sends an HTTP GET request to the "/pools/default/buckets" endpoint of the Couchbase Buckets REST API. It then applies several matching conditions to determine if the API is accessible without authentication:

- The response status code must be 200. - The response body must contain the words "couchbase", "bucket", and "data". - The response headers must include the word "application/json".

If all of these conditions are met, the module identifies the Couchbase Buckets REST API as being accessible without authentication.

For more information, you can refer to the Couchbase REST API documentation.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/pools/default/bucke...
Matching conditions
status: 200and
word: "couchbase":, "bucket":, "data":and
word: application/json
Passive global matcher
No matching conditions.
On match action
Report vulnerability