Merge pull request #3893 from Akokonunes/patch-128

Create CVE-2019-9915.yaml

cves/2019/CVE-2019-9915.yaml

@@ -0,0 +1,34 @@
+id: CVE-2019-9915
+
+info:
+  name: GetSimpleCMS 3.3.13 - Open Redirection
+  author: 0x_Akoko
+  severity: medium
+  description: GetSimpleCMS 3.3.13 has an Open Redirect via the admin/index.php redirect parameter.
+  reference:
+    - https://www.invicti.com/web-applications-advisories/ns-18-056-open-redirection-vulnerability-in-getsimplecms
+    - https://github.com/GetSimpleCMS/GetSimpleCMS/issues/1300
+    - https://www.cvedetails.com/cve/CVE-2019-9915
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
+    cvss-score: 6.10
+    cve-id: CVE-2019-9915
+    cwe-id: CWE-601
+  metadata:
+    verified: true
+  tags: cve,cve2019,redirect,getsimple,cms
+
+requests:
+  - raw:
+      - |
+        POST /admin/index.php?redirect=https://interact.sh/ HTTP/1.1
+        Host: {{Hostname}}
+        Content-Type: application/x-www-form-urlencoded
+
+        userid={{username}}&pwd={{password}}&submitted=Login
+
+    matchers:
+      - type: regex
+        part: header
+        regex:
+          - '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/' # https://regex101.com/r/ZDYhFh/1