One Hat Cyber Team

Your IP: 216.73.216.19
Server IP: 178.33.27.10
Server: Linux cpanel.dev-unit.com 3.10.0-1160.108.1.el7.x86_64 #1 SMP Thu Jan 25 16:17:31 UTC 2024 x86_64
Server Software: Apache/2.4.57 (Unix) OpenSSL/1.0.2k-fips
PHP Version: 8.2.11
Buat File | Buat Folder

Dir : ~/usr/local/apache/modsecurity-owasp-old/lua/

View File Name : osvdb.lua

#!/opt/local/bin/lua

local request_filename = m.getvar("REQUEST_FILENAME", "none")
local args = {};
args = m.getvars("ARGS_NAMES", "none")

function main ()
for line in io.lines("/usr/local/apache/conf/modsec_current/base_rules/vulnerabilities.txt") do
    if line:find(request_filename) then
	if string.find(line, "^%d+\,") then
		for k,v in pairs(args) do
		local arg_name = v["value"] .. "=";
			if string.find(line, arg_name) then
			m.setvar("resource.osvdb_check", "1")
			m.setvar("resource.osvdb_vulnerable", "1")
			m.setvar("tx.osvdb_msg", line)
			return(line) 
			end
		end
	end
    end
end
	m.setvar("resource.osvdb_check", "1")
	return nil
end