From 0b4668d935d1ed6b47027cc422d223ace6c9783d Mon Sep 17 00:00:00 2001
From: MostInterestingBotInTheWorld
 <98333686+MostInterestingBotInTheWorld@users.noreply.github.com>
Date: Wed, 29 Jun 2022 10:38:32 -0400
Subject: [PATCH] Enhancement: cves/2022/CVE-2022-1713.yaml by mp

---
 cves/2022/CVE-2022-1713.yaml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/cves/2022/CVE-2022-1713.yaml b/cves/2022/CVE-2022-1713.yaml
index e575283202..c7f20c3990 100644
--- a/cves/2022/CVE-2022-1713.yaml
+++ b/cves/2022/CVE-2022-1713.yaml
@@ -1,11 +1,11 @@
 id: CVE-2022-1713
 
 info:
-  name: Drawio - SSRF on /proxy endpoint
+  name: Drawio <18.0.4 - Server-Side Request Forgery
   author: pikpikcu
   severity: high
   description: |
-    SSRF on /proxy in GitHub repository jgraph/drawio prior to 18.0.4. An attacker can make a request as the server and read its contents. This can lead to a leak of sensitive information.
+    Drawio prior to 18.0.4 is vulnerable to server-side request forgery. An attacker can make a request as the server and read its contents. This can lead to a leak of sensitive information.
   reference:
     - https://huntr.dev/bounties/cad3902f-3afb-4ed2-abd0-9f96a248de11
     - https://nvd.nist.gov/vuln/detail/CVE-2022-1713
@@ -31,9 +31,11 @@ requests:
       - type: word
         part: body
         words:
-          - "<title>Flowchart Maker &amp; Online Diagram Software</title>"
+          - "<title>Flowchart Maker & Online Diagram Software</title>"
 
       - type: word
         part: header
         words:
           - "application/octet-stream"
+
+# Enhanced by mp on 2022/06/29