nuclei-templates/cves/CVE-2018-6389.yaml

id: CVE-2018-6389

info:
  name: Wordpress Load Script
  author: nadino
  severity: low

requests:
  - method: GET
    path:
      - "{{BaseURL}}/wp-admin/load-scripts.php?load="
    matchers:
      - type: dsl
        dsl:
          - 'contains(x_powered_by,"Engine")'
          - 'contains(content_type,"javascript")'
adding 2 cves and crxde 2020-05-14 17:54:02 +00:00			`id: CVE-2018-6389`

			`info:`
			`name: Wordpress Load Script`
			`author: nadino`
updating severity 2020-05-24 03:50:13 +00:00			`severity: low`
adding 2 cves and crxde 2020-05-14 17:54:02 +00:00
			`requests:`
			`- method: GET`
Update syntax 2020-05-25 07:49:06 +00:00			`path:`
adding 2 cves and crxde 2020-05-14 17:54:02 +00:00			`- "{{BaseURL}}/wp-admin/load-scripts.php?load="`
			`matchers:`
			`- type: dsl`
			`dsl:`
Update syntax 2020-05-25 07:49:06 +00:00			`- 'contains(x_powered_by,"Engine")'`
			`- 'contains(content_type,"javascript")'`