From 0d82660f900a95be2880f6e371708f4dccdf594b Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Sat, 5 Jun 2021 22:04:09 +0530
Subject: [PATCH] Create exposed-jquery-file-upload.yaml

---
 .../exposed-jquery-file-upload.yaml           | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 misconfiguration/exposed-jquery-file-upload.yaml

diff --git a/misconfiguration/exposed-jquery-file-upload.yaml b/misconfiguration/exposed-jquery-file-upload.yaml
new file mode 100644
index 0000000000..f7091c2e29
--- /dev/null
+++ b/misconfiguration/exposed-jquery-file-upload.yaml
@@ -0,0 +1,19 @@
+id: exposed-jquery-file-upload
+
+info:
+  name: Exposed jQuery File Upload
+  author: dhiyaneshDk
+  reference: https://www.exploit-db.com/exploits/45584
+  severity: medium
+  tags: exposure,jquery
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/jquery-file-upload/server/php/"
+
+    matchers:
+      - type: regex
+        regex:
+          - '^{\"files\":'
+        part: body