From 69f15b80d426b21fe741b6ac181a35db3f3a9f79 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=E6=88=91=E4=BC=9A=E5=95=8AD=2C=E6=98=8E=E5=B0=8F=E5=AD=90?= =?UTF-8?q?=2C=E5=BE=A1=E5=89=91?= <104293903+pwnhxl@users.noreply.github.com> Date: Wed, 2 Oct 2024 06:31:45 +0800 Subject: [PATCH 1/2] fixfp --- http/cves/2024/CVE-2024-34982.yaml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/http/cves/2024/CVE-2024-34982.yaml b/http/cves/2024/CVE-2024-34982.yaml index daf62d8e17..0490274605 100644 --- a/http/cves/2024/CVE-2024-34982.yaml +++ b/http/cves/2024/CVE-2024-34982.yaml @@ -44,6 +44,7 @@ http: words: - '"code":' - '"msg":' + - '"url":' - 'php"}' condition: and @@ -71,4 +72,4 @@ http: - 'contains(body, "{{string}}" )' - 'contains(header, "text/html")' condition: and -# digest: 4a0a00473045022100d6aa315d5179da098583ea0872b86fe414cbc4cda8301de18ddfafb2a93013ae0220177931a6619243ead54124a71f081a30a8e952360d780e51afa8290a31cff24d:922c64590222798bb761d5b6d8e72950 \ No newline at end of file +# digest: 4a0a00473045022100d6aa315d5179da098583ea0872b86fe414cbc4cda8301de18ddfafb2a93013ae0220177931a6619243ead54124a71f081a30a8e952360d780e51afa8290a31cff24d:922c64590222798bb761d5b6d8e72950 From b3ac9694d9e445007587b485fc3c16cbed6bad9a Mon Sep 17 00:00:00 2001 From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com> Date: Wed, 2 Oct 2024 12:59:00 +0400 Subject: [PATCH 2/2] Update CVE-2024-34982.yaml --- http/cves/2024/CVE-2024-34982.yaml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/http/cves/2024/CVE-2024-34982.yaml b/http/cves/2024/CVE-2024-34982.yaml index 0490274605..886575b43c 100644 --- a/http/cves/2024/CVE-2024-34982.yaml +++ b/http/cves/2024/CVE-2024-34982.yaml @@ -19,11 +19,13 @@ info: product: lylme_spage fofa-query: icon_hash="-282504889" tags: cve,cve2024,lylme-spage,rce,intrusive -flow: http(1) && http(2) + variables: string: "{{randstr}}" filename: "{{to_lower(rand_text_alpha(5))}}" +flow: http(1) && http(2) + http: - raw: - | @@ -47,6 +49,7 @@ http: - '"url":' - 'php"}' condition: and + internal: true - type: status status: