hacktricks/pentesting/3690-pentesting-subversion-svn-server.md

779 B

3690 - Pentesting Subversion (svn server)

Basic Information

Subversion is one of many version control options available today. It's often abbreviated as SVN.
Subversion is used for maintaining current and historical versions of projects. Subversion is an open source centralized version control system. It's licensed under Apache. It's also referred to as a software version and revisioning control system.

**Default port: **3690

PORT     STATE SERVICE
3690/tcp open  svnserve Subversion

Banner Grabbing

nc -vn 10.10.10.10 3690

Enumeration

svn ls svn://10.10.10.203 #list
svn log svn://10.10.10.203 #Commit history
svn checkout svn://10.10.10.203 #Download the repository
svn up -r 2 #Go to revision 2 inside the checkout folder