nuclei-templates/cnvd/2019/CNVD-2019-01348.yaml

30 lines
831 B
YAML
Raw Normal View History

2021-06-03 16:24:08 +00:00
id: CNVD-2019-01348
2021-04-23 13:10:17 +00:00
info:
2021-04-23 13:11:15 +00:00
name: Xiuno BBS CNVD-2019-01348
2021-04-23 13:10:17 +00:00
author: princechaddha
severity: medium
description: The Xiuno BBS system has a system reinstallation vulnerability. The vulnerability stems from the failure to protect or filter the installation directory after the system is installed. Attackers can directly reinstall the system through the installation page.
reference: https://www.cnvd.org.cn/flaw/show/CNVD-2019-01348
2022-01-04 06:18:14 +00:00
tags: xiuno,cnvd,cnvd2019
2021-04-23 13:10:17 +00:00
requests:
- method: GET
path:
- "{{BaseURL}}/install/"
headers:
Accept-Encoding: deflate
2021-04-23 13:10:17 +00:00
matchers-condition: and
matchers:
- type: status
status:
- 200
2021-04-23 13:10:17 +00:00
- type: word
part: body
2021-04-23 13:10:17 +00:00
words:
- "/view/js/xiuno.js"
- "Choose Language (选择语言)"
condition: and