Metadata type "webapp", fixes #322

cliffe · Jun 26, 2024 · 4c44664 · 4c44664
1 parent f8f5037
commit 4c44664
Show file tree

Hide file tree

Showing 4 changed files with 4 additions and 1 deletion.
diff --git a/modules/vulnerabilities/unix/http/glpi_php_injection/secgen_metadata.xml b/modules/vulnerabilities/unix/http/glpi_php_injection/secgen_metadata.xml
@@ -10,6 +10,7 @@
     exploit takes advantage of a unauthenticated php command injection available
     from GLPI versions 10.0.2 and below to execute a command.</description>
 
+  <type>webapp</type>
   <type>http</type>
   <type>bruteforceable</type>
   <type>in_the_wild</type>

diff --git a/modules/vulnerabilities/unix/http/linuxki_rce/secgen_metadata.xml b/modules/vulnerabilities/unix/http/linuxki_rce/secgen_metadata.xml
@@ -13,7 +13,7 @@
     resulting in security vulnerability.
   </description>
 
-  <type>web</type>
+  <type>webapp</type>
   <type>in_the_wild</type>
   <privilege>user_rwx</privilege>
   <access>remote</access>

diff --git a/modules/vulnerabilities/unix/http/lucee_rce/secgen_metadata.xml b/modules/vulnerabilities/unix/http/lucee_rce/secgen_metadata.xml
@@ -12,6 +12,7 @@
   </description>
 
   <type>http</type>
+  <type>webapp</type>
   <type>in_the_wild</type>
   <!-- currently running as root but leaking to user home dir -->
   <privilege>root_rwx</privilege>

diff --git a/modules/vulnerabilities/unix/webapp/commando/secgen_metadata.xml b/modules/vulnerabilities/unix/webapp/commando/secgen_metadata.xml
@@ -11,6 +11,7 @@
 WARNING: This module needs some further testing, and may not work without input as per example scenarios.</description>
 
 <type>www_rand</type>
+<type>webapp</type>
 <privilege>info_leak</privilege>
 <access>remote</access>
 <platform>linux</platform>