Update CVE-2020-29164.yaml

2021-03-18 00:05:04 +05:30 · 2021-03-18 00:05:04 +05:30 · 2ff0881325
parent 1e54f891a6
commit 2ff0881325
1 changed files with 7 additions and 6 deletions
--- a/cves/2020/CVE-2020-29164.yaml
+++ b/cves/2020/CVE-2020-29164.yaml
@ -6,6 +6,7 @@ info:
  author: geeknik
  severity: medium
  tags: pacsone,xss,cve,cve2020
+  reference: https://gist.github.com/leommxj/0a32afeeaac960682c5b7c9ca8ed070d

 requests:
  - method: GET
@ -14,13 +15,13 @@ requests:

    matchers-condition: and
    matchers:
-      - type: status
-        status:
-          - 301
-          - 302
-        negative: true

      - type: word
        words:
-          - "<img src=\"\" onerror=\"alert(1);\">1</img>"
+          - "text/html"
+        part: header
+
+      - type: word
+        words:
+          - '<img src="" onerror="alert(1);">1</img>'
        part: body