daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

misc update to CVE-2020-10148

patch-1
sandeep 2022-03-29 16:00:27 +05:30
parent c21c81095b
commit 9012b2396a
1 changed files with 7 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
cves/2020/CVE-2020-10148.yaml
View File

@ -23,20 +23,22 @@ requests:
- method: GET - method: GET
path: path:
- "{{BaseURL}}/web.config.i18n.ashx?l=nuclei&v=nuclei" - "{{BaseURL}}/web.config.i18n.ashx?l=nuclei&v=nuclei"
# - "{{BaseURL}}/SWNetPerfMon.db.i18n.ashx?l=nuclei&v=nuclei" - "{{BaseURL}}/SWNetPerfMon.db.i18n.ashx?l=nuclei&v=nuclei"
# Above path can be used if you are looking to scan for "SWNetPerfMon.db" file.
stop-at-first-match: true
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
part: body
words: words:
- "SolarWinds.Orion.Core." - "SolarWinds.Orion.Core."
# - "Connection String" # Commented matchers can be used for "SWNetPerfMon.db" file. - "Connection String"
part: body condition: or
- type: word - type: word
part: header
words: words:
- "text/plain" - "text/plain"
part: header
- type: status - type: status
status: status: