daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2024-6893.yaml

patch-10
Ritik Chaddha 2024-08-09 19:33:29 +04:00 committed by GitHub
parent 50f478c29b
commit 86da5db4ff
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
http/cves/2024/CVE-2024-6893.yaml
View File

@ -1,16 +1,16 @@
id: CVE-2024-6893
info:
name: Journyx - XML External Entities Injection
name: Journyx - XML External Entities Injection (XXE)
author: s4eio
severity: high
description: |
The "soap_cgi.pyc" API handler allows the XML body of SOAP requests to contain references to external entities. This allows an unauthenticated attacker to read local files, perform server-side request forgery, and overwhelm the web server resources.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2024-6893
- https://securityforeveryone.com/tools/journyx-xxe-cve-2024-6893
- https://korelogic.com/Resources/Advisories/KL-001-2024-010.txt
- https://packetstormsecurity.com/files/180005/Journyx-11.5.4-XML-Injection.html
- https://nvd.nist.gov/vuln/detail/CVE-2024-6893
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
@ -21,7 +21,7 @@ info:
vendor: journyx
product: journyx-jtime
fofa-query: icon_hash="-109972155"
tags: cve,cve2024,journyx
tags: cve,cve2024,journyx,xxe
variables:
pass: "{{rand_text_alpha(5)}}"
@ -41,6 +41,8 @@ http:
part: body
regex:
- 'root:.*:0:0:'
- 'invalid password for user'
condition: and
- type: word
part: header