matcher updates

cves/2019/CVE-2019-7219.yaml

@@ -19,4 +19,8 @@ requests:
       - type: word
         part: header
         words:
-          - "/html"
+          - "text/html"
+
+      - type: status
+        status:
+          - 200

cves/2020/CVE-2020-1943.yaml

@@ -16,7 +16,12 @@ requests:
         words:
           - "<svg/onload=alert(1)>"
         part: body
+
       - type: word
         words:
-          - "/html"
+          - "text/html"
         part: header
+
+      - type: status
+        status:
+          - 200

vulnerabilities/generic/basic-cors.yaml

@@ -3,16 +3,19 @@ id: basic-cors-misconfig
 info:
   name: Basic CORS misconfiguration
   author: nadino
-  severity: medium
+  severity: low
 
 requests:
   - method: GET
     path:
       - "{{BaseURL}}"
     headers:
-      Origin: "https://evil.com"
+      Origin: https://evil.com
+
     matchers:
       - type: word
         words:
           - "Access-Control-Allow-Origin: https://evil.com"
+          - "Access-Control-Allow-Credentials: true"
+        condition: and
         part: header

vulnerabilities/generic/basic-xss-prober.yaml

@@ -12,6 +12,7 @@ requests:
   - method: GET
     path:
       - "{{BaseURL}}/%61%27%22%3e%3c%69%6e%6a%65%63%74%61%62%6c%65%3e"
+
     matchers-condition: and
     matchers:
       - type: word
@@ -23,3 +24,7 @@ requests:
         words:
           - "text/html"
         part: header
+
+      - type: status
+        status:
+          - 200

vulnerabilities/generic/top-xss-params.yaml

@@ -29,3 +29,7 @@ requests:
         words:
           - "text/html"
         part: header
+
+      - type: status
+        status:
+          - 200

vulnerabilities/wordpress/wordpress-emails-verification-for-woocommerce.yaml

@@ -20,4 +20,10 @@ requests:
       - type: word
         words:
           - "wordpress_logged_in"
-        part: header
+        part: header
+
+      - type: status
+        status:
+          - 401
+          - 403
+        negative: true