add CVE-2022-23944 (#3605)

* add CVE-2022-23944

* fix CVE-2021-23944 matcher type

* Update CVE-2022-23944.yaml

* minor updates

Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
Co-authored-by: sandeep <sandeep@projectdiscovery.io>
patch-1
cckuailong 2022-01-27 18:29:26 +08:00 committed by GitHub
parent 4bd8b86a3e
commit 5b424fafe1
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 33 additions and 0 deletions

View File

@ -0,0 +1,33 @@
id: CVE-2022-23944
info:
name: ShenYu Admin Unauth Access
author: cckuakilong
severity: medium
description: User can access /plugin api without authentication. This issue affected Apache ShenYu 2.4.0 and 2.4.1.
reference:
- https://github.com/apache/incubator-shenyu/pull/2462/files
- https://nvd.nist.gov/vuln/detail/CVE-2022-23944
- https://github.com/cckuailong/reapoc/blob/main/2022/CVE-2022-23944/vultarget/README.md
classification:
cve-id: CVE-2022-23944
cwe-id: CWE-862
tags: cve,cve2022,shenyu,unauth,apache
requests:
- method: GET
path:
- "{{BaseURL}}/plugin"
matchers-condition: and
matchers:
- type: word
part: body
words:
- '"message":"query success"'
- '"code":200'
condition: and
- type: status
status:
- 200