Update CVE-2023-37270.yaml
parent
37d30cce82
commit
92675d0756
|
@ -34,12 +34,19 @@ http:
|
|||
GET /admin.php?page=user_activity HTTP/1.1
|
||||
Host: {{Hostname}}
|
||||
|
||||
|
||||
host-redirects: true
|
||||
cookie-reuse: true
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: dsl
|
||||
dsl:
|
||||
- "status_code_2 == 200"
|
||||
- "contains(body_2,'Warning: [mysql error') && contains(body_2,'INSERT INTO') && contains(body_2,'SQL syntax;')"
|
||||
- type: word
|
||||
part: body_2
|
||||
words:
|
||||
- 'Warning: [mysql error'
|
||||
- 'INSERT INTO'
|
||||
- 'SQL syntax;'
|
||||
condition: and
|
||||
|
||||
- type: status
|
||||
part: body_2
|
||||
status:
|
||||
- 200
|
||||
|
|
Loading…
Reference in New Issue