Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

mysql.initial Config - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#config#exposure#hackerone
Description

What is the "mysql.initial Config - Detect?" module?

The "mysql.initial Config - Detect" module is designed to detect misconfigurations in the mysql.initial configuration file. It targets the Roundcube Webmail initial database structure and checks for the presence of this specific configuration file. The severity of this module is classified as informative.

This module was authored by ELSFA7110.

Impact

This module does not have a direct impact on the system. It is used to identify potential misconfigurations in the mysql.initial configuration file, which could lead to security vulnerabilities if not properly secured.

How does the module work?

The "mysql.initial Config - Detect" module works by sending an HTTP GET request to the "/mysql.initial.sql" path. It then performs two matching conditions:

    - It checks the response body for the presence of the phrase "Roundcube Webmail initial database structure". - It verifies that the HTTP response status is 200 (OK).

If both conditions are met, the module considers the mysql.initial configuration file to be detected.

For example, the module sends the following HTTP request:

GET /mysql.initial.sql

The matching conditions ensure that the response body contains the specific phrase and the HTTP status is 200.

For more information, you can refer to the HackerOne report related to this module.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/mysql.initial.sql
Matching conditions
word: Roundcube Webmail initial database struc...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability