updated matcher

http/cves/2024/CVE-2024-5936.yaml

@@ -1,34 +1,34 @@
 id: CVE-2024-5936
 
 info:
-  name: private-gpt < 0.5.0 - Open Redirect
+  name: PrivateGPT < 0.5.0 - Open Redirect
   author: ctflearner
   severity: medium
   description: |
     An open redirect vulnerability exists in imartinez/privategpt version 0.5.0 due to improper handling of the 'file' parameter. This vulnerability allows attackers to redirect users to a URL specified by user-controlled input without proper validation or sanitization.
   reference:
     - https://huntr.com/bounties/43f05c1e-d7b8-45e2-b1fe-48faf1e3a48d
+    - https://drive.google.com/file/d/1Fw5eT-9bAqsqzNUqdTXebtqIo5NI6T48/view
     - https://nvd.nist.gov/vuln/detail/CVE-2024-5936
-    
   classification:
     cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
     cvss-score: 4.3
     cve-id: CVE-2024-5936
     cwe-id: CWE-601
-
   metadata:
     verified: true
     max-request: 1
+    shodan-query: html:"private gpt"
     product: private-gpt
-  tags: cve2024,cve,huntr,private-gpt,redirect,openredirect
+  tags: cve2024,cve,private-gpt,redirect
 
 http:
   - method: GET
     path:
-      - "{{BaseURL}}/file=https://attacker.com"
+      - "{{BaseURL}}/file=https://oast.me"
 
     matchers:
       - type: regex
         part: header
         regex:
-          - '(?m)^(?:Location\s*?:\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\-_\.@]*)attacker\.com.*$'
+          - '(?m)^(?:Location\s*?:\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\-_\.@]*)oast\.me.*$'