daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2024-0204.yaml 

Updated and added Shodan facets
patch-1
Ryan Borum 2024-01-24 07:36:09 -05:00 committed by GitHub
parent 5ced0a8e54
commit 327cf651c5
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 7 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
http/cves/2024/CVE-2024-0204.yaml
View File

@ -2,7 +2,9 @@ id: CVE-2024-0204
info:
name: Fortra GoAnywhere MFT - Authentication Bypass
author: DhiyaneshDK
author:
- DhiyaneshDK
- GraysonsMortalEnemy
severity: critical
description: |
Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal.
@ -19,7 +21,9 @@ info:
metadata:
verified: true
max-request: 1
shodan-query: http.favicon.hash:1484947000
shodan-query:
- http.favicon.hash:1484947000,1828756398,1170495932
- html:InvalidBrowser.xhtml
tags: cve,cve2024,auth-bypass,goanywhere
http:
@ -39,4 +43,4 @@ http:
- type: status
status:
- 200
# digest: 4a0a0047304502200c0737654cbbb14c8e7da4470731e92dace06ddccf481af6ed760cb99c5d75e5022100be491a724570489903e091ba728fa5d7fee4ef4cefd643d1c89ca314edd55f32:922c64590222798bb761d5b6d8e72950
# digest: 4a0a0047304502200c0737654cbbb14c8e7da4470731e92dace06ddccf481af6ed760cb99c5d75e5022100be491a724570489903e091ba728fa5d7fee4ef4cefd643d1c89ca314edd55f32:922c64590222798bb761d5b6d8e72950