From 14423e1220207ed0b135c76b997cad1b5b8f1a14 Mon Sep 17 00:00:00 2001
From: sullo <sullo@cirt.net>
Date: Mon, 9 May 2022 21:24:35 -0400
Subject: [PATCH] Restore newlines

---
 cves/2014/CVE-2014-9618.yaml                     | 2 +-
 cves/2019/CVE-2019-18818.yaml                    | 2 ++
 misconfiguration/proxy/metadata-alibaba.yaml     | 1 +
 misconfiguration/proxy/open-proxy-localhost.yaml | 6 ++++++
 4 files changed, 10 insertions(+), 1 deletion(-)

diff --git a/cves/2014/CVE-2014-9618.yaml b/cves/2014/CVE-2014-9618.yaml
index 721e875c45..7e809c5157 100644
--- a/cves/2014/CVE-2014-9618.yaml
+++ b/cves/2014/CVE-2014-9618.yaml
@@ -1,7 +1,7 @@
 id: CVE-2014-9618
 
 info:
-  name: Netsweeper 4.0.8 - Authentication Bypass (New Profile Creation) 
+  name: Netsweeper 4.0.8 - Authentication Bypass (New Profile Creation)
   author: daffainfo
   severity: critical
   description: The Client Filter Admin portal in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to bypass authentication and subsequently create arbitrary profiles via a showdeny action to the default URL.
diff --git a/cves/2019/CVE-2019-18818.yaml b/cves/2019/CVE-2019-18818.yaml
index e9773fd82e..3de85d0087 100644
--- a/cves/2019/CVE-2019-18818.yaml
+++ b/cves/2019/CVE-2019-18818.yaml
@@ -23,7 +23,9 @@ requests:
         Host: {{Hostname}}
         Origin: {{BaseURL}}
         Content-Type: application/json
+
         {"code": {"$gt": 0}, "password": "SuperStrongPassword1", "passwordConfirmation": "SuperStrongPassword1"}
+
     matchers-condition: and
     matchers:
       - type: status
diff --git a/misconfiguration/proxy/metadata-alibaba.yaml b/misconfiguration/proxy/metadata-alibaba.yaml
index fca319f76b..d7ffe67c09 100644
--- a/misconfiguration/proxy/metadata-alibaba.yaml
+++ b/misconfiguration/proxy/metadata-alibaba.yaml
@@ -29,6 +29,7 @@ requests:
       - |+
         GET http://{{hostval}}/dynamic/instance-identity/document HTTP/1.1
         Host: {{hostval}}
+
     payloads:
       hostval:
         - alibaba.interact.sh
diff --git a/misconfiguration/proxy/open-proxy-localhost.yaml b/misconfiguration/proxy/open-proxy-localhost.yaml
index 755194c333..23936c32ee 100644
--- a/misconfiguration/proxy/open-proxy-localhost.yaml
+++ b/misconfiguration/proxy/open-proxy-localhost.yaml
@@ -21,21 +21,27 @@ requests:
       - |+
         GET / HTTP/1.1
         Host: {{Hostname}}
+
       - |+
         GET http://somethingthatdoesnotexist/ HTTP/1.1
         Host: somethingthatdoesnotexist
+
       - |+
         GET http://127.0.0.1/ HTTP/1.1
         Host: 127.0.0.1
+
       - |+
         GET https://127.0.0.1/ HTTP/1.1
         Host: 127.0.0.1
+
       - |+
         GET http://localhost/ HTTP/1.1
         Host: localhost
+
       - |+
         GET https://localhost/ HTTP/1.1
         Host: localhost
+
     unsafe: true
     req-condition: true
     stop-at-first-match: true