daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2024-35584.yaml

patch-12
Ritik Chaddha 2024-10-22 21:01:49 +05:30 committed by GitHub
parent 360098bdd7
commit 6124ae82d4
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
http/cves/2024/CVE-2024-35584.yaml
View File

@ -1,7 +1,7 @@
id: CVE-2024-35584
info:
name: OpenSIS < 9.1 - SQL Injection
name: openSIS < 9.1 - SQL Injection
author: s4e-io
severity: high
description: |
@ -45,7 +45,7 @@ http:
matchers:
- type: dsl
dsl:
- 'duration_2>=7'
- 'contains(body_1, "openSIS") && contains(body_2, "donetext: 'Done'")'
- 'status_code_1 == 200 && status_code_2 == 200'
- duration_2>=7
- contains(body_1, "openSIS") && contains_all(body_2, "donetext:", "\'Done\'")
- status_code_1 == 200 && status_code_2 == 200
condition: and