syntax update

patch-1
PD-Team 2021-01-19 12:33:48 +05:30
parent 58ebf59035
commit 1a14ff8c44
5 changed files with 7 additions and 12 deletions

View File

@ -2753,4 +2753,3 @@ requests:
words:
- "ThinkPHP"
part: header

View File

@ -5,8 +5,7 @@ info:
author: dr_set
severity: critical
description: ThinkPHP 2.x version and 3.0 in Lite mode Remote Code Execution.
# reference: https://github.com/vulhub/vulhub/tree/0a0bc719f9a9ad5b27854e92bc4dfa17deea25b4/thinkphp/2-rce
reference: https://github.com/vulhub/vulhub/tree/0a0bc719f9a9ad5b27854e92bc4dfa17deea25b4/thinkphp/2-rce
requests:
- method: GET

View File

@ -5,8 +5,7 @@ info:
author: dr_set
severity: critical
description: Thinkphp5 5.0.22/5.1.29 Remote Code Execution if the website doesn't have mandatory routing enabled (which is default).
# reference: https://github.com/vulhub/vulhub/tree/0a0bc719f9a9ad5b27854e92bc4dfa17deea25b4/thinkphp/5-rce
reference: https://github.com/vulhub/vulhub/tree/0a0bc719f9a9ad5b27854e92bc4dfa17deea25b4/thinkphp/5-rce
requests:
- method: GET

View File

@ -5,8 +5,7 @@ info:
author: dr_set
severity: critical
description: Thinkphp5 5.0(<5.0.24) Remote Code Execution.
# reference: https://github.com/vulhub/vulhub/tree/0a0bc719f9a9ad5b27854e92bc4dfa17deea25b4/thinkphp/5.0.23-rce
reference: https://github.com/vulhub/vulhub/tree/0a0bc719f9a9ad5b27854e92bc4dfa17deea25b4/thinkphp/5.0.23-rce
requests:
- method: POST

View File

@ -5,8 +5,7 @@ info:
author: dr_set
severity: critical
description: Verbose SQL error message reveals sensitive information including database credentials.
# reference: https://github.com/vulhub/vulhub/tree/0a0bc719f9a9ad5b27854e92bc4dfa17deea25b4/thinkphp/in-sqlinjection
reference: https://github.com/vulhub/vulhub/tree/0a0bc719f9a9ad5b27854e92bc4dfa17deea25b4/thinkphp/in-sqlinjection
requests:
- method: GET