Update CVE-2020-9344.yaml

2023-07-26 11:56:52 +05:30 · 2023-07-26 11:56:52 +05:30 · 5fe0dfef0f
parent f0fa5c00f9
commit 5fe0dfef0f
1 changed files with 7 additions and 4 deletions
--- a/http/cves/2020/CVE-2020-9344.yaml
+++ b/http/cves/2020/CVE-2020-9344.yaml
@ -15,13 +15,12 @@ info:
    cvss-score: 6.1
    cve-id: CVE-2020-9344
    cwe-id: CWE-79
-    epss-score: 0.00205
    cpe: cpe:2.3:a:atlassian:subversion_application_lifecycle_management:*:*:*:*:*:*:*:*
+    epss-score: 0.00205
  metadata:
    max-request: 5
+    verified: true
    shodan-query: http.component:"Atlassian Jira"
-    vendor: atlassian
-    product: subversion_application_lifecycle_management
  tags: cve,cve2020,atlassian,jira,xss

 http:
@ -39,6 +38,10 @@ http:
        part: body
        words:
          - "<script>alert(document.domain)</script>"
+          - "jira"
+          - "subversion"
+        condition: and
+        case-insensitive: true

      - type: word
        part: header
@ -47,4 +50,4 @@ http:

      - type: status
        status:
-          - 200
+          - 200